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IBM  recommends  Microsoft®  Windows*  XP  Professional  for  Business. 


MfhtKi  inlormation:  For  a  copy  ot  applicable  product  warranties,  write  to:  Warranty  Intormation.  P.O.  Box  12195.  RTP.  NC  27709.  Attn:  Dept  JDJA/B203.  IBM  makes  no  representation  or  warranty  regarding  third-party  products  or  services.  'Prices  do  not  include  tax  or  shipping 
j  r  s.  '.;?ci  to  change  without  notice  Reseller  pnces  may  vary.  Public  access  not  available  in  all  areas.  Access  fees  may  apply  ‘Requires  download  of  client  software.  ‘Based  on  IEEE  802.11b  This  wireless  LAN  product  has  been  designed  to  permit  legal  operation  worldwide  in 
.  r.ich  It  1$  approved  Operation  on  channels  12-t4  is  not  permitted  in  all  regulatory  regions  of  the  world.  Consequently,  the  wireless  LAN  feature  is  limited  to  operate  on  channels  1-11  and  will  not  support  channels  t2. 13  and  14  This  product  has  been  tested  and  certified 
'  ii'Ci.ibie  by  the  Wireless  Ethernet  Compatibility  Alliance  and  is  authorized  to  carry  the  Wi-FI  logo.  'For  ThinkPad  and  NetVista  models  without  a  separate  video  card,  memory  supports  both  system  and  video  Accessible  system  memory  may  be  up  to  64MB  less  than  the 
;..:rd  oepending  on  video  mode  "GB  *  1.000.000.000  bytes  when  refernng  to  storage  capacity  Accessible  capacity  is  less:  up  to  3GB  is  used  in  service  partition.  These  model  numbers  achieved  eTesting  Labs.  Inc.'s  BatteryMark*  4  01  or  the  Ziff  Davis  Media.  Inc 's 
I'fj'ie  2002  BatteryMark  Version  1.0  Battery  Rundown  Time  of  at  least  the  time  shown.  This  test  was  performed  without  independent  verification  by  the  VeriTes'  testing  division  ot  Lionbridge  Technologies.  Inc.  CVeriTesf)  or  Ziff  Davis  Media.  Inc.:  neither  Ziff  Dav« 
I  '  "  ^  t  '.les!  makes  any  representations  or  warranties  as  to  these  test  results.  Winstone  is  a  registered  trademark  and  BatteryMark  is  a  trademark  of  Ziff  Davis  Publishing  Holdings.  Inc.,  in  the  U.S.  and  other  countries  A  description  ot  the  environment  under  which  the 
test  p-  '  'vyi  IS  avaiiaote  at  ibm.com/pc/ww/thmkpadlunerylite  Battery  life  (and  recharge  times)  will  vary  based  on  many  factors  including  screen  brightness,  applications,  features,  power  management,  battery  conditioning  and  other  customer  preferences.  'Includes  battery 
and  opi  o  .  -  Jci  bezel .  isiead  of  standard  optical  dnve  in  Ultrabay  bay.  if  applicable:  weight  may  vary  due  to  vendor  components,  manutactunng  process  and  options.  Thinness  may  vary  at  certain  points  on  the  system.  •Some  software  may  differ  from  its  retail  version  (if  availabiei 

and  lui,  iV't  .1  iiude  usei  manuals  or  all  program  functionalily  Software  bcense  agreements  may  apply.  Telephone  support  may  be  subiect  to  additional  charges  If  a  machine  is  listed  as  having  "Onsite  service  (or  select  repairs"  or  "tjmited  onsite  service."  this  means  that  onsite 
service  IS  available  oni>  lor  tne  replacement  of  select  parts  For  all  other  warranty  repairs.  IBM  wM  provide  the  customer  a  replacement  part  tor  customer  installation.  The  parts  (or  which  onsite  service  is  available  varies  by  machine,  but  may  include  the  processor  power  supply. 


Take  off  to  parts  unknown  with  an  IBM  ThinkPad®  wireiess  notebook. 
The  world’s  easiest  way  to  switch  between  wired  and  wireless. 


Wherever  you  want  to  work,  the  sky  is  the  limit  when  you  have  IBM  ThinkPad 
notebooks  with  Access  Connections  software  and  wireless  Intel®  Centrino™  mobile 
technology  (on  select  models).  Now  it’s  easier  than  ever  to  switch  between  wired  and 
wireless  networks  -  whether  you’re  at  an  airport,  the  office,  an  Internet  cafe,  even 
your  kitchen.’  So  consider  the  IBM  ThinkPad  wireless  notebook,  and  experience  a 
whole  new  level  of  wireless  possibilities,  thiflk  frCBdOITI 


1  866  723-4971  I  ibm.com/shop/m337 

Save  on  shipping.  Order  oniine." 
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NEW!  IBM  ThinkPad  T40 

Distinctive  IBM  Innovations; 

•  Access  Connections  -  easiest  wired  and 
wireless  connectivity 

•  IBM  Embedded  Security  Subsystem  2.0' 
System  Features: 

•  Intel'-  Centrino™  mobile  technology 

-  Intel  Pentium'  M  processor  1.3GHz  supports 
Enhanced  Intel  SpeedStep  technology'- 

-  Intel  PROA/Vireless  Network 
Connection  802.11b-' 

•  14.1“  XGA  TFT  Display  (1024x768) 

•  256MB  DDR  SDRAM  std/2GB  max' 

•  30GB  hard  drive' 

•  Ultrabay™  Slim  DVD-ROM 

•  5.0-hr  battery  life®  •  4.5-lb  travel  weight 

•  Microsoff  Windows  XP  Professional* 

•  1  -yr  system/battery  limited  warranty’ 


*1,549 


NavCode  2378D2U-M337 


ServicePac-’  Service  Upgrade:'" 

3-yr  Onsite  Repair/9x5/Next  Business 
Day  Response 
(#3019195)  *243 


NEW!  IBM  ThinkPad  R40 

Distinctive  IBM  Innovations: 

•  Access  Connections  -  easiest  wired  and 
wireless  connectivity 

•  IBM  Embedded  Security  Subsystem  2.0^ 

System  Features: 

•  Intel'  Centrino™  mobile  technology 

-  Intel  Pentium'' M  processor  1.3GHz  supports 
Enhanced  Intel  SpeedStep '  technology'' 

-  Inter  PRO/Wireless  Network 
Connection  802.11b' 

•  14.1“  XGA  TF  Display  (1024x768) 

•  256MB  DDR  SDRAM  std/IGB  max 

•  20GB  hard  drive 

•  Ultrabay  Plus  CD-RW/DVD-ROM  combo  drive 

•  6.1-hr  battery  life  •  5.6-lb  travel  weight 

•  Microsoft  Windows"  XP  Professional 

•  1-yr  system/battery  limited  warranty’ 


*1,299* 


NavCode  289723U-M337 


ServicePac  Service  Upgrade:"’ 

2-yr  Onsite  Repair/9x5/Next  Business 
Day  Response  ,  ■ 

(#3019189)  ‘197 
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heat  sink,  system  board  or  base  cover.  To  determine  the  complete  list  of  parts  for  which  onsite  service  is  available  for  a  particular  machine,  contact  IBM.  IBM  will  attempt  to  diagnose  and  resolve  any  problems  remotely  before  sending  a  replacement  part  or  technician /'These  services 
are  available  tor  machines  normally  used  for  business,  professional  or  trade  purposes,  rather  than  personal,  family  or  household  purposes.  Not  all  machine  types  and  models  are  covered.  Service  period  begins  with  the  equipment  date  of  purchase.  Service  must  be  purchased  dunng 
the  original  limited  product  warranty  period.  Service  levels  are  response-time  objectives  and  are  not  guarantees.  A  service  technician  is  scheduled  to  arrive  at  your  location  within  two  or  four  business  hours  or  the  next  business  day  (depending  on  service)  after  remote  problem 
determination  is  completed.  For  the  9x5x4-hour  service,  calls  dispatched  after  t:00  p.m.  local  time,  you  can  expect  the  service  technician  to  arrive  by  the  morning  of  the  next  business  day.  For  noncritical  service  requests,  a  service  technician  will  arrive  by  the  end  of  the  following 
business  day  If  the  machine  problem  turns  out  to  be  a  Customer  Replaceable  Unit  (CRU).  IBM  will  express  ship  the  part  to  you  for  quick  replacement.  Onsite  24x7x2-hour  service  is  not  available  in  all  locations.  External  penpherals.  such  as  racks,  tape  drives  and  channel  controllers 
require  their  own.  separate  service  coverage:  they  are  not  covered  under  the  attached  Machine.  Service  activation  is  required  immediately  following  purchase.  For  ThinkPad  notebooks  requiring  LCD  or  other  component  replacement,  IBM  may  choose  to  perform  service  at  the  depot 
repair  center.  For  tailing  non-IBM  components,  customer  must  provide  replacement  part  unless  IBM  has  a  Technical  Support  Agreement  with  the  manufacturer.  Service  does  not  cover  accessories,  supply  items  and  certain  parts  such  as  batteries,  frames  and  covers.  "Standar/ 
shipping  included  when  you  order  online.  U  S.  only.  "With  Intel  SpeedStep,  processor  speed  may  be  reduced  to  conserve  battery  power.  IBM  reserves  the  right  to  alter  product  offerings  and  specifications  at  any  time,  without  notice.  IBM  is  not  responsible  for  photograph  or 
typographic  errors.  All  IBM  product  names  are  registered  trademarks  or  trademarks  of  International  Business  Machines  Corporation  in  the  U  S.  and  other  countries.  Lotus  and  SmartSuite  are  registered  trademarks  of  Lotus  Development  Corporation,  an  IBM  Company.  Iri‘. i.-. ' 
Inside,  the  Intel  Inside  logo,  Celeron,  Intel  Centnno.  the  Intel  Centrino  logo  and  Pentium  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  in  the  U  S.  and  other  countries.  Microsoft  and  Windows  are  trademarks  or  registered  trademarki  of  M  - 
Corporahon.  Other  company,  product  and  service  names  may  be  trademarks  or  service  marks  of  others.  ®  2(X)3  IBM  Corp.  All  rights  reserved. 
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SOFTWARE  FROM  SUN! 

$100  SAVES  MILLIONS  1 
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java"*  Enterprise 

System 

lava”  Enterprise 

System 
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System 

THE  JAVA'  ENTERPRISE  SYSTEM  -  EVERY  NETWORK 

SERVICE  YOUR  BUSINESS  NEEDS  -  CLUSTERING, 

CALENDAR,  DIREaORY  AND  IDENTITY  SERVICES, 

INSTANT  MESSAGING,  PORTAL,  WEB  SERVER  AND 
APPLICATIONS  SERVER  DONE  TO  PERFEaiON. 

CERTAINLY,  SUN  IS  KNOWN  FOR  ITS  INNOVATIVE 
HARDWARE.  BUT  JUST  AS  WE  REVOLUTIONIZED 

THE  HARDWARE  BUSINESS,  WE’RE  NOW 

TRANSFORMING  SOFTWARE  FOR  OUR  CUSTOMERS 

WITH  THE  JAVA  ENTERPRISE  SYSTEM. 

INSTEAD  OF  SPENDING  $10005  PER  EMPLOYEE 

ON  SOFTWARE,  SPEND  $100.  THAT  CAN  SAVE  YOUR 

BUSINESS  MILLIONS  ALONE,  BUT  THE  SUPPORT 

AND  TRAINING  ARE  INCLUDED  WITH  THE  |AVA 

ENTERPRISE  SYSTEM  CAN  SAVE  YOU  EVEN  MORE. 

■  ^Sun 
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GETTING  SCHEDULED  UPGRADES  THAT  ARE  100% 
COMPATIBLE  WITH  PREVIOUS  VERSIONS  ISN'T 

BORING.  NEITHER  IS  THE  NO-SURPRISE  PRICING  OF 

THE  |AVA  ENTERPRISE  SYSHM.  PREDiaABLE  IS 
REVOLUTIONARY. 

DESIGNED  TO  BE  SIMPLE  -  YET  TOTALLY 

COMPATIBLE  -  WHETHER  YOU’RE  INTEGRATING 

WITH  YOUR  OWN,  OR  THIRD  PARTY  SOFTWARE. 

SIMPLE  MEANS  MAXIMIZED  SECURITY, 

EFFICIENCY,  AND  SCALABILITY. 

RUN  IT  ON  SOLARIS  OR  LINUX,  INTEGRATE 

3RD  PARTY  SOFTWARE,  ACTIVATE  ONLY  WHAT  J 

YOU  NEED,  ADD  USERS  AS  REQUIRED,  WE  Vi 

BUILT  THE  JAVA  ENTERPRISE  SYSTEM  TO  BE 

OPEN -FOREVER.  ^ 

^Sun 
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TESTED 

ON  FRIENDS 

BENEFITS 
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llialElLTEO  THE  lAVA  ENTERPRISE  SYSTEM  TO  RUN 
HH^KREASING  OUR  PRODUCTIVITY  WHIU 
fMCIING  A  PRODUa  THAT  SAVES  US  MILUONS 
MEEAR.  WE  THEN  LICENSED  ATEST  VERSION  TO 
^ME  OF  OUR  BEST  CUSTOMERS  -  AND  NOW  WE’RE 

1V0II  BETTER  FRIENDS.  „  - 

THE  |AVA  ENTERPRISE  SYSTEM  IS  SECURE, 

INTEGRAnD,  PREDiaABLE,  EFFKIENT,  SIMPURED, 
STANDARDIZED,  LOWER  COST,  UPGRADEABLE, 

OPEN  AND  A  HECK  OF  A  LOT  EASIER  TO  MANAGE. 

THINK  PREDiaABIUTY  IS  AS  EXCITING  AS  WE  DO?  Ip 

RND  OUT  lUST  HOW  MUCH  THE  JAVA  ENTERPRISE  h 

SYSTEM  CAN  DO  FOR  YOU.  |  l 

GET  A  FREE  SELF-ASSESSMENT  TODAY.  I 

SUN.COM/TRYIT  | 
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Networl^ 


News 


1 7  EMC  readying  flexible  storage  arrays. 

1 7  Female  IT  professionals  cope  in  a 
male-dominated  industry, 

1 10  Event  highlights  VoIP  hopes,  fears.  ..  _  _____ . . 

1 10  AT&T  adds  VoIP  to  managed  VPN  service, 

1 12  Critics  call  new  California  anti-spam  law  too  broad 

1 12  IEEE  pushes  for  faster  WLAN  throughput. 

1 14  Web  services  management  gathering  steam, 

1 14  IBM  gives  on-demand  computing  a  boost. 

1 16  3Com  jumps  back  into  router  arena. 

lIBNetlQ  refreshes  systems  management  tools, 

17  SIP-enabled  products  grab  spotlight 

18  HP  thinks  small  about  utility  computing, 

19  Mercury  pushes  into  apps  management. 

19  Cisco  Catalyst  6500  gets  Gigabit  Ethernet  makeover. 


/  T 


•  Anti-spam  technologies 

•  Security  appliances 

•  Fiber  to  the  Premises 


•  intelligent  storage 
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^  Real-time  collaboration 
•  Service-oriented  app 


de^opment  architecture 
•  Mo^e  convergence 
computing 


•  Radio'lrequency 
identification 


and  more 
starts  on  p^e  45. 
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NetWorker 


■  21  UnitedLinux  quietly 
marches  on. 


■  21  IP  videoconferencing  winning 
converts. 


■  35  Ramping  up  remote  access 
for  all. 


www.nwfiision.com 


24  Red  Hat  branches  out. 


Technology  Update 


Interactive 


■  24  Kevin  Tolly:  Testing 
anti-spam  products  can  be  done. 


Enterprise 

Applications 


■  27  Pershing  gets  arms  around 
online  apps. 


■  37  Spyware  removal  tools  stop 

snoopers,  - 

■  37  Steve  Blass:  Ask  Dr 

Internet. 

■  38  Mark  Gibbs:  A  Bayesian 
filter  that  nabs  99,75%  of  spam? 

■  38  Keith  Shaw:  The  coolest 
gadgets  from  Demomobile. 


Most  popular  downloads 

From  ActiveSNMP  to  Observer,  see  which  free  tools  are  the  most  ’ 
sought-after  on  Fusion,  DocFinder:  7840 


Columnists 


News  the  way  you  want  it 

Track  just  the  technologies,  companies  and  authors  you're  interested 
in  —  we've  now  got  more  than  60  different  RSS  feeds, 

DocFinder:  7442 


Compendium 

Tgd-G 

So  by  now  you've  lost  track  of  how  many  people  you’ve 
Googled.  But  how  many  people  have  Googled  you?  Fusion 
Executive  Editor  Adam  Gaffin  shows  you  a  way  to  find  out. 

DocFinder:  7841 


■  27  Vendors  diversify  content 
management  tools. 


■  28  Scott  Bradner: 

Priorities;  Greed  before  a  funcbon- 
‘  ing  Internet. 


Opinions 

■  42  Editorial:  MCI  hangs  Its 
future  on  part  of  Its  past. 

■  43  Joel  Snyder:  When  will 
we  ever  learn? 


NetSmart 

Online  learning 

Earn  an  IT  degree  online  with  courses  from  Capella  University. 

DocFinder:  7846 


Wireless  Wizards 

How  does  Power  over  Ethernet  work? 

The  Wizards  explain  how  POE  works  to  power  up  an  access 
point.  DocFinder:  7842 


Service  Providers 

■  31  AT&T  developing  early 
warning  tool. 

■  31  DSL  Forum  targets  business 
services. 


■  32  Johna  Till  Johnson: 

RBOCs  stand  tall  against  recording 
industry. 


■  43  James  Kobielus: 

Shakeout  looms  in  Web  services 
management. 

■  90  BackSpin:  For  the 

people  and  by  the  people. 

■  90  'Net  Buzz:  Fear  not.  the 
federal  do-not-call  list  will  survive 
Just  fine. 

■  86  Career  classifieds. 


i  Breaking  News 

I  Exclusive  up-to-date  news  every  day.  DocFinder:  6342 
I  Free  e-maii  newsietters 

,  Sign  up  for  any  free  e-mail  newsletter.  DocFinder:  6343 


Teiework  Beat 

At  last,  home  servers 

Net.Worker  Managing  Editor  Toni  Kistner  says  products  from 
Ispiri,  D-Link  and  Seagate  provide  much-needed  consumer 
storage  options.  DocFinder  7843 


■  CONTACT  US  Network  World,  IISTurnpike  Road,  Southborough, 
MA  01772;  Phone:  (508)  460-3333;  Fax:  (508)  490-6438; 

E-mail:  nwnews@nww.com;  STAFF:  See  the  masthead  on  page  19 


Smaii  Business  Tech 

EBP  for  SMBs 

Columnist  James  Gaskin  says  if  you've  outgrown  your 
accounting  software,  look  to  iCode. 

DocFinder  7844 


for  more  contact  information.  REPRINTS:  (717)  399-1900 


SUBSCRIPTIONS/CHANGE  OF  ADDRESS:  Phone:  (508)  490-6444; 
Fax:  (508)  490-6400;  E-mail:  nwcirc@nww.com; 

URL:  www.subscribenw.com 


What  is  DocFinder? 


We’ve  made  it  easy  to  acgess  articles  and  resources 
online.  Simply  enter  the  four-digit  DocFinder  num¬ 
ber  in  the  search  box  on  the  home  page,  and  you’ll 
jump  directly  to  the  requested  information. 


I  Take  the 


move  and  you  need  the  best  tools  to  stay  ahead  of  the  competition.  That's  why  you 
need  BlackBerry.®  It's  the  best  wireless  enterprise  solution  both  for  users  and  IT  departments. 
Advanced  wireless  handhelds  help  users  stay  connected  to  corporate  data,  email  and  even 
phone  calls  on  the  go*  BlackBerry  Enterprise  Server  software  provides  IT  departments 
with  advanced  security,  centralized  management  and  support  for  multiple  wireless 
networks.  And,  the  BlackBerry  Enterprise  Server  v3.6  introduces  breakthrough  features  that 
provide  the  ability  to  wirelessly  access  your  firm's  existing  corporate  data.  Get  BlackBerry 
and  empower  users  without  compromising  IT  requirements.  It  will  help  keep  you  in  the  lead. 


BLACKBERRY 

WWW.BLACKBERRY.COM 


•2003  ReMArch  *n  Motion  Limited  (RIM)  All  rights  reserved  BlackBerry  is  an  end  to-end  wireless  solution  developed  by  RIM  RIM.  BlackBerry,  the 
BlackBerry  logo  and  the  'envelope  in  mobon*  symbol  are  trademarks  or  registered  trademarks  of  RIM  'Check  with  yoor  service  provider  for  availability 
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EMC  readying  flexible  storage  arrays 


■  BY  DENI  CONNOR 

EMC  is  expected  to  bolster  its 
mid-range  arrays  this  week  with 
three  new  network-attached  stor¬ 
age  systems  that  sources  say  not 
only  will  give  users  more  flexible 
and  scalable  configuration  op¬ 
tions,  but  also  let  them  re-use 
existing  arrays. 

While  EMC  declined  to  com¬ 


ment,  the  announcement  is  ex¬ 
pected  to  include: 

•  The  NetWin  200,  a  NAS  server 
that  combines  Microsoft’s  Win¬ 
dows  Storage  Server  2003  tech¬ 
nology  with  EMC  Clariion  CX200 
storage. 

•  A  gateway  product,  the  NS 
600G,  that  lets  users  connect 
Fibre  Channel  Clariion  arrays  to 
Gigabit  Ethernet  networks. 


•  A  new,  less-powerful  and  less- 
expensive  Celerra  NAS  system. 

Kent  Smith,  principal  consultant 
for  IPSO,  a  business  systems  inte¬ 
grator  that  installs  and  configures 
EMC  boxes,  says  the  new  arrays  al¬ 
low  considerably  more  flexibility 
“Every  customer  1  am  working 
with  is  continually  trying  to  figure 
out  how  to  take  what  they’ve  got 
and  continue  to  use  it  while  still 


Female  IT  professionals  cope 
in  a  male-dominated  industry 


■  BY  ELLEN  MESSMER 

SANIBEL,  FLA.  —  As  a  co¬ 
founder  ofTrend  Micro,a  $350  mil¬ 
lion  maker  of  anti-virus  and  con¬ 
tent-filtering  products,  Eva  Chen 
could  be  considered  one  of  the 
most  influential  women  in  IT.  But 
when  she  goes  on  business  trips  to 
Japan  with  an  entourage  of  soft¬ 
ware  engineers,  Chen  puts  away 
the  business  card  that  lists  her  title 
as  “chief  technology  officer  and 
executive  vice  president”  and 
instead  hands  out  one  that  reads: 

“engineering  secretary’ 

The  switch  is  a  response  to  a 
cultural  bias  in  Japan  against 
women  in  authority  she  said. 

“1  take  engineers  into  meetings 
and  then  pass  notes  to  them  for 
questions  1  want  to  ask.  They  say 
they’re  so  ashamed,"  said  Chen, 
who  was  born  in  Taiwan  and 
earned  a  master’s  degree  in  busi¬ 
ness  administration  and  computer 
science  at  the  University  of  Dallas. 

Chen  told  of  her  dual  business- 
card  existence  during  the  Executive  Women’s  Forum 
held  earlier  this  month,  attended  by  about  120 
women  in  IT  security.  Joyce  Brocaglia,  president  and 
CEO  of  recruiting  firm  Alta  Associates, said  she  orga¬ 
nized  the  forum  —  which  was  off-limits  to  men  —  to 
share  ideas  in  a  maledominated  profession. 

Chen’s  decision  to  fade  into  the  background  in 
order  to  do  business  in  Japan  is  one  way  of  coping 
with  gender  bias.  Some  large  corporations,  includ¬ 
ing  General  Motors,  say  that  while  obstacles  facing 
women  are  well  known,  they  are  still  hard  to  con¬ 
front. 


“In  some  cultures,  males  don’t 
like  to  take  direction  from  fe¬ 
males,”  said  Nick  Andreou,  engi¬ 
neering  group  manager  for  collab¬ 
oration  at  GM,  in  a  presentation  at 
the  recent  Auto-Tech  conference 
in  Detroit,  adding  it  can  be  “taboo 
in  business  to  discuss  these  un¬ 
comfortable  subjects.” 

But  like  other  sensitive  topics, 
such  as  race  and  religion,  gender 
discrimination  can’t  be  ignored, 
Andreou  said,  not  only  because 
it’s  unfair  but  because  it  affects 
business  productivity  and  rela¬ 
tions  in  an  increasingly  global 
world. 

“You  can’t  erase  all  these  cultur¬ 
al  differences,”  said  Oracle  Chief 
Security  Officer  Mary  Ann  David¬ 
son  at  the  Executive  Women’s 
Forum.  She  said  she’s  had  cause  to 
confront  some  of  the  “knuckle¬ 
dragging  types  from  one  of  these 
cultures.” 

But  she  said  women  have  to  be 
self-critical  about  management 
failures  of  their  own:  “Some 
women  are  queen  bees  —  they  say  ‘I  got  here  the 
hard  way  so  I’m  going  to  make  it  hard  [on  others].’ 
Hopefully,  we’ll  pass  that.” 

Technical  fields  such  as  programming  appear  to 
have  a  stronger  reputation  as  a  meritocracy  — 
where  merit  alone  is  paramount  —  than  the  world 
of  the  IT  salesforce,  where  myriad  social  factors 
might  come  more  into  play 
“There’s  still  a  lot  of  the  ‘good  old  boy’  syndrome 
out  there,”  said  Elaine  Price,  CEO  of  CYA  ! 
Technologies. “1  experience  this  on  a  daily  basis.  So 

See  Women,  page  18 


llWomen  have  a  little 
catching  up  to  do.  But 
I’m  proud  to  say  I  work 
for  an  organization  that 
recognizes  thatii 

Rhonda  MacLean 

Senior  vice  president  and  director 
of  corporate  information  security, 
Bank  of  America 


bolting  on  new  functionality^ 
Smith  says.“I  have  one  client  that 
doesn’t  have  NAS,  but  does  have  a 
few  Symmetrix  boxes  that  are  all 
connected  directly  [to  servers]. 
With  these  new  products,  they 
can  take  their  Symmetrix  boxes, 
add  disks  and  connect  them  to 
the  network  with  an  [NS600G]. 
They  can  do  it  without  buying  a 
lot  of  other  stuff  and  improve  the 
value  of  the  existing  equipment.” 

The  NetWin  200  will  mark 
EMC’s  entry  into  the  low-end  Win¬ 
dows  Storage  Server  2003  market. 
The  NetWin  200,  which  is  based 
on  EMC’s  CX200  disk  processor 
enclosure  and  a  dual  Intel  Pen¬ 
tium  4  processor-based  server 
attached  to  as  many  as  30  146G- 
byte  disks,  is  aimed  at  customers 
who  will  implement  it  in  a  core- 
to-edge  NAS/storage-area  net¬ 
work  configuration. 

In  this  configuration,  customers 
will  install  smaller  Windows  Stor¬ 
age  Server  appliances  at  the  edge 
of  the  network  that  feed  into  the 
NetWin  200.  In  turn,  NetWins  will 
connect  to  Celerra  NS600  arrays 
and  then  into  Celerra  Clustered 
Network  Server  boxes,  which  are 
connected  to  EMC  Symmetrix 
storage  arrays  in  the  data  center. 

In  addition  to  having  as  much 
as  4  terabytes  of  usable  capacity 
the  NetWin  200  will  have  redun¬ 
dant  cooling  fans  and  data  paths, 
and  RAID  5  support,  as  well  as 
EMC’s  PowerPath  option,  which 
switches  data  to  an  alternate  path 
when  the  primary  path  fails. 

The  NetWin  200  will  be  man¬ 
aged  by  new  software,  the  Navi- 
Sphere  Agent  for  Windows  Stor¬ 
age  Server,  which  lets  users  ere 
ate,  delete  and  expand  volumes, 
as  well  as  monitoring  and  alert¬ 
ing  for  array  faults  or  other  prob¬ 
lems.  Like  EMC’s  other  NAS  prod¬ 
ucts,  the  NetWin  200  also  can  be 
managed  from  a  Web  interface  or 
the  Microsoft  Management  Con¬ 
sole.  It  will  work  with  EMC’s  On- 
Course  software  for  the  automat¬ 
ic  replication  and  distribution  of 
files  across  the  network.The  front- 
end  server  runs  Windows  Storage 
Server  2003;  the  CX200  array  runs 
EMC’s  Rare  operating  system. 


NAS  for  Windows 

EMC’s  NetWin  200  is  ex¬ 
pected  to  be  implemented 
in  a  core-to-edge  strategy. 
Features  include: 

‘.'s  - •> 

• 

Up  to  4  terabytes  of  usable 
capacity.  , 

• 

Dual  Pentium  4  processors. 

• 

A  CX200  disk  processor 
enclosure  containing  15 
disks. 

N+1  redundant  cooling, 
fans,  data  paths. 

• 

RAID  5  support. 

EMC  PowerPath, 

NaviSphere  Agent  for 
Windows  Storage  Server. 

• 

Web  interface,  Microsoft 
Management  Console. 

• 

i 

1 

An  optional  disk-array 
enclosure  for  15  disks. 

_ i 

As  for  the  EMC  Celerra  NS600G 
SAN/NAS  gateway, sources  say  it  is 
based  on  EMC’s  Celerra  NS600 
NAS  system.  Unlike  the  NS600 
though,  the  NS600G  enables  an 
Ethernet  connection  to  separate 
Fibre  Channel  storage.  The 
NS600G  consists  of  a  decoupled 
NS600  in  which  the  NAS  head  can 
connect  to  several  types  of  back¬ 
end  Fibre  Channel  storage.  It  will 
support  attachment  to  Clariion 
CX400  and  CX600  arrays  first,  fol¬ 
lowed  by  connection  to  EMC 
Symmetrix  arrays.  Sources  also 
say  EMC  is  considering  allowing 
the  NS600G  to  work  with  other 
vendors’ storage  arrays. 

The  new  Celerra  NSGOO  NAS  sys- 
tern  has  one  controller  instead  of 
two  and  reportedly  will  be  less 
expensive,  although  EMC  has  not 
announced  prices  or  said  when  it 
will  be  available. 

The  NetWin  200,  which  is  avail¬ 
able  now,  starts  at  $50,000  for  a 
500G-byte  configuration.  Pricing 
and  availability  could  not  be 
learned  for  the  NS600G.  ■ 
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Heat  still  on  VeriSign's  SiteFinder 

■  VeriSign,  under  fire  for  launching  its  SiteFinder  URL-redirection 
service  earlier  this  month,  is  creating  a  technical  review  panel  of 
Internet  experts  to  evaluate  the  service.  SiteFinder  redirects 
unknown  URLs  ending  in  .com  or  .net  to  VeriSign’s  site-searching 
engine.  The  service  caused  an  uproar  in  the  Internet  community 
leading  the  Internet  Corporation  for  Assigned  Names  and  Numbers 
to  ask  VeriSign  to  voluntarily  suspend  the  service.  While  VeriSign  is 
creating  the  SiteFinder  panel  in  reaction  to  complaints  from  ICANN 
and  others,  it  is  pleased  with  the  site’s  performance, says  spokesman 
Tom  Galvin.“We’re  pretty  gratified  with  the  level  of  use,” Galvin  says, 
adding  that  SiteFinder  has  had  about  100  million  visitors  during  its 
first  10  days,  and  of  them  about  20  million  visitors  have  used  the 
site’s  tools.  Meanwhile  a  pair  of  companies  sued  VeriSign  over 
SiteFinder.  Domain  name  registry  Go  Daddy  Software  and  search- 
engine  company  Popular  Enterprises  claimed  VeriSign  misused  its 
position  as  registrar  to  launch  SiteFinder  for  its  own  gain. 

'Net  tax  ban  called  drain  on  states 

■  Legi.slation  intended  to  ban  taxes  unique  to  the  Internet  could  end  up  exempting 
many  telecommunications  services  from  state  and  local  taxes,  costing  states  billions  of 
dollars  a  year,  according  to  a  group  representing  45  state  governments.The  Internet  Tax 
Nondiscrimination  Act,  which  passed  the  U.S.  House  of  Representatives  Sept.  17,  was 
amended  to  define  Internet  access. The  bill’s  authors  intend  to  exempt  Internet  access 
from  taxes,  as  well  as  telecom  services  offered  over  the  Internet,  which  would  include 
the  growing  trend  of  offering  voice  telephone  services  through  packet  switching  tech¬ 
nology,  according  to  the  Multistate  Tax  Commission. The  Internet  Tax  Nondiscrimination 
Act,  which  has  not  yet  passed  the  Senate,  would  permanently  replace  a  moratorium  on 
Internet-only  taxes  that  has  been  in  place  since  1998.  The  MTC  released  a  study  last 
week  that  said  the  bill  could  cause  state  and  local  governments  to  collectively  lose 
between  $4  billion  and  $8.75  billion  a  year  by  2006,  rather  than  the  $500  million  pro¬ 
jected  when  the  bill  was  originally  introduced. 

Sophos  snaps  up  ActiveState 

■  Anti-virus  vendor  Sophos  last  week  acquired  e-mail  content-filtering  software  vendor 
ActiveState  for  $23  million.  Sophos  indicated  it  made  the  acquisition  to  play  a  role  in 
the  anti-spam  and  e-mail  content-filtering  market.  Among  its  future  plans,  Sophos  says  it 
intends  to  develop  ActiveState’s  PureMessage  product,  which  runs  on  Unix,  for  the 
Windows  platform. 

'  I  ; '  vi 

Instant  breakup 

n  Hftfladsiphia  Inquirer  reported  last  week  on  a  cad  who  broke  up  with  his  girt- 
-  iid  via  Instant  messaging.  Still,  maybe  that's  not  quite  as  bad  as  a  Malaysian 
'  ~  't  r  -iitg  earlier  this  year  that  men  could  divorce  their  wives  over  wireless-phone 
tt.  ;  -5— r  ?  Read  more  of  Compendium  at  www.nwfusion.com, 
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■  TheGoodTheBadTheUgly 


^  HP  has  their  back.  HP’s  Linux  customers  can  sleep  a  bit  better  now 
that  the  company  has  offered  to  foot  the  bill  for  any  possible  legal  action  by  The 
SCO  Group,  which  has  roiled  the  Linux  world  in  an  ongoing  intellectual-property 
dispute.  HP  becomes  the  first  major  systems  vendor  to  do  so. 


Sit  on  it  We're  hope  you're  sitting  down  for  this.  Researchers  at  Trinity 
College  in  Dublin  are  making  headlines  for  their  work  on  a  networked  sofa 
that  can  tell  who  is  sitting  on  it  by  measuring  their 
weight  and  lets  couch  potatoes  do  everything 
from  ordering  food  to  controlling 
appliances  without  lifting 
a  finger.  > 


BRIAN  6AIDRY 


#  Visa  problems.  The  U.S.  State  Department's  online  system  for  checking 
whether  visa  applicants  have  a  terrorist  or  criminal  history  fell  victim  last  Tuesday 
to  a  computer  worm  and  was  disabled  for  several  hours.  The  government  stressed 
that  the  W32.Welchia  worm  affected  its  system  for  accessing  the  data,  but  not  the 
database  itself. 


Symantec  purchases  PowerQuest 

■  Symantec  announced  last  week  that  it  will  acquire  storage-management  vendor 
FbwerQuest  for  $150  million  to  improve  its  server  and  desktop  management  and  pro¬ 
tection  software.  Symantec  plans  to  integrate  PowerQuest’s  disk  imaging,  provisioning 
and  disaster-recovery  technologies  into  its  software  for  managing  and  protecting 
servers,  desktop  and  laptop  computers.  PowerQuest  also  provides  data  migration  and 
life  cycle  management  software,  which  Symantec  says  it  will  add  to  its  portfolio. 

Boeing  to  expand  in-flight  'Net  coverage 

■  Boeing  is  about  to  lease  space  on  a  satellite  above  the  Atlantic  Ocean,  filling  a  cover¬ 
age  gap  in  its  Connexion  by  Boeing  in-flight  Internet  service. The  new  leasing  agreement 
IS  for  two  transponders  on  the  Intelsat  907  satellite,  which  is  stationed  above  the  Atlantic 
Ocean  at  27.5  degrees  west,  the  company  says. The  Ku-band  spot-beam  coverage  provid¬ 
ed  by  the  transponders  encompasses  Northern  and  Central  Europe,  Iceland  and  the  east¬ 
ern  part  of  Greenland,  and  will  be  used  by  Connexion  to  service  aircraft  flying  between 
Europe  and  North  America.  The  Connexion  service,  which  has  yet  to  be  commercially 
launched, offers  a  broadband  Internet  connection  to  passengers  on  aircraft  on  which  the 
system  has  been  installed.Transmission  speeds  vary  with  conditions,but  maximum  capac¬ 
ity  is  20M  bit/sec  downstream  to  the  aircraft  and  IM  bit/sec  upstream  from  the  aircraft. 

Amazon  poised  to  enter  search  market 

■  Amazon.com  is  reportedly  working  to  develop  a  Web  search  technology  that  will  help 
it  compete  against  Google  and  Yahoo  when  it  comes  to  directing  consumers  to  mer¬ 
chandise  online. The  Internet  retail  giant  has  set  up  a  subsidiary  called  A9  in  northern 
California  to  develop  the  search  technology  and  is  recruiting  a  host  of  software  engi¬ 
neers  from  Silicon  Valley,  according  to  a  report  in  the  online  edition  of  The  Wall  Street 
Journal.  In  addition  to  creating  and  using  the  search  service,  Amazon  plans  to  market 
the  A9  technology  to  other  sites.  Amazon  declined  to  confirm  or  deny  the  report. 
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Debate  highlights  VoIP  hopes  and  fears 


More  than  2,000  people  attended  Fall  2003  VON  last  week  in  Boston. 


■  BY  PHIL  HOCHMUTH 

BOSTON  —  As  vendors  at  last 
week’s  Voice  on  the  Net  confer¬ 
ence  pushed  new  applications 
for  making  IP  telephony  ubiqui¬ 
tous  and  more  multimedia- 
friendly,  attendees  cautioned  that 
plenty  of  basic  issues  still  need 
to  be  resolved. 

Those  issuing  warnings  at  the 
convergence  industry’s  annual 
gathering  weren’t  discounting 
the  notion  that  Session  Initiation 
Protocol  (SlP)-based  presence 
applications  hold  promise  for 
connecting  workers  anywhere 
via  video,  voice  and  instant  mes- 
saging.They  are  more  concerned 
about  how  to  secure  IP  PBXs 
from  viruses,  the  shortage  of 
enterprise  voice-over-IP  (VoIP) 


management  tools  and  the  com¬ 
plexities  of  rolling  out  converged 
applications  beyond  simple  dial 
tone  and  calling  features. 

“SIP  and  presence  are  more  of 
a  high-talk  item  than  something 
that’s  actually  being  imple¬ 
mented,”  said  Dustin  Goodwin,  a 
network  engineer  with  the  New 
York  integration  firmVoIPexperts 
.com,  which  offers  IP  PBX  and 
VoIP  network  planning  and  in¬ 
stallation  services. 

Security  issues  can  complicate 
the  rollout  of  SIP-based  confer¬ 
encing  and  any  other  applica¬ 
tions  that  include  IP  voice.  While 
users  might  think  of  voice  as  just 
another  IP  application,  “worms 
and  viruses  change  all  that,” 
Goodwin  said. 

Many  companies  he  has  work¬ 


ed  with  have  deployed  IP  PBXs 
and  phones  on  secured  VPNs, 
and  even  behind  internal  fire¬ 
walls  on  the  LAN, to  avoid  having 


a  virus  or  other  intruder  bring 
down  the  phone  system. 

'This  is  the  practice  at  Florida 
International  University,  where 


Cisco’s  CallManager  IP  PBX  and 
IP  phones  are  deployed  on  a 
secured  virtual  LAN  separate 
from  other  public  servers. 

“Voice  is  really  separated  from 
data  by  VLANs  and  other  net¬ 
work  controls,  so  we  think  it’s 
pretty  secure,”  said  A1  Lxjsada, 
director  of  telecommunications 
at  the  Miami  school.  “But  the 
challenge  with  this  kind  of  archi¬ 
tecture  is  that  it’s  difficult  to  roll 
out  applications  that  integrate 
voice  and  IP  PBX  functionality 

An  example  of  this  is  a  call-cen¬ 
ter  application  lx)sada  wants  to 
install  that  would  require  PCs 
and  IP  phones  to  interact  with 
the  IP  PBX.  To  do  so,  he  would 
have  to  let  PCs  on  the  network 
see  the  IP  PBX,  which  could 
leave  the  phone  system  at  the 
mercy  of  a  virus-infected  PC. 

Others  at  VON  said  the  com¬ 
plexity  of  VoIP  tempered  their 
enthusiasm  for  the  newfangled 
applications  on  display 

“It  still  takes  a  lot  longer  than  it 
should  to  set  up  new  users,” 
despite  the  promise  of  easier 
administration  in  a  converged 
IP  network,  said  Tom  Stephens, 
network  group  leader  at  Cray, 
the  Seattle  supercomputer  man¬ 
ufacturer.  The  Cisco  CallMan- 
ager-based  network  installed 
several  years  ago  at  Cray  runs 
smoothly,  though  he  said 
“there’s  more  fulfilling  work  my 
staff  could  be  doing  than  setting 
up  IP  phones.”  He  also  said  that 
more  troubleshooting  tools 
made  specifically  for  VoIP  net¬ 
works  are  needed. 

Vendors  Avaya,  Cisco,  Go- 
Beam,  M5  Networks  and  Nortel 
got  a  chance  to  harangue  each 
other  about  shortcomings  in 
each  others’ VoIP  products  dur¬ 
ing  an  IP  PBX  Shootout  debate 
hosted  by  Network  World  Editor 
in  Chief  John  Dix.  Avaya  and 
Nortel  representatives  took 
turns  criticizing  Cisco’s  IP  tele¬ 
phony  products,  specifically  cit¬ 
ing  potential  vulnerabilities  in 
Cisco’s  CallManager  IP  PBX, 
which  is  based  on  Windows  and 
SQL  Server. 

Cisco  Technical  Marketing 
Manager  Bill  King  questioned 
Nortel’s  lack  of  major  customers 
for  its  IP  PBX  products,  and  the 
delays  and  strategy  shifts  in  its 
enterprise  VoIP  business.  He  also 
challenged  Avaya’s  recent  state¬ 
ments  in  market-share  gains,  say¬ 
ing  the  vendor  was  muddling  its 
PBX  and  IP  voice  business 
See  VON.  page  17 


AT&T  adds  VoIP  to  mantled  VPN  service 

Getting  more  out  of  your  VPN 


■  BY  DENISE  PAPPALARDO 

AT&T  last  week  announced  a 
voice-over-IP  option  for  its  man¬ 
aged  VPN  service  that  promises 
multinational  customers  an  easier 
way  to  support  voice  between 
sites  around  the  world. 

The  service  will  let  users  inte¬ 
grate  voice  and  data  trunks, which 
provides  for  unified  billing  and 
might  save  money,  although  AT&T 
has  not  released  pricing.  And  for 
customers  already  running  voice 
on  data  networks,  the  option 
promises  to  reduce  complexity 
and  increase  network  flexibility  by 
eliminating  the  need  for  perma¬ 
nent  virtual  circuits  (PVC). 

Frame  relay  PVCs,  used  to  route 
traffic  between  fixed  locations, 
can  be  unwieldy  in  a  fully  meshed 
data  network  supporting  hun¬ 
dreds  of  sites.  Because  AT&T’s 
Enhanced  VPN  service  is  based 
on  Multi-protocol  L.abel  Switching, 
the  new  VoIP  option  means  each 
site  can  be  tied  into  the  cloud  and 
packets  will  be  tagged  as  they  enter  and  rout¬ 
ed  accordingly  so  customers  don’t  have  to 
predefine  PVCs. 

•AT&T  says  the  serx'ice  will  support  on-net 
£-;-f  off-net  calling  and  will  be  available  in  40 
countries  by  year-end.  Customers  will  be  able 

■  use  existing  frame  relay,  ATM  or  IP  connec- 
tii  IS  u  aicess  the  serv'ice. 

But  ustomers  looking  for  the  VoIP  features 
vmII  h.iv--  to  be  patient  because  the  service 
wi-i  no!  h:  available  for  another  seven  to  nine 
nurnttv  by  the  end  of  the  second  quarter. 

V  thi  ;fn  facto  incumbent  vendor  [AT&T] 
doesn  t  .lwa\s  have  to  be  the  first,  but  when  it 
does  roll  cut  (.  new  tithnology]  it  has  to 


AT&T’s  new  VPN  VoIP  option  will  integrate  voice  and  data 
trunks,  providing  unified  biiiing  and  ostensibiy  savings, 
aithough  pricing  is  not  yet  avaiiabie.  Customers  aiready 
running  voice  over  frame  reiay  can  use  the  MPLS-based 
service  to  do  away  with  permanent  virtuai  circuits. 

O  Voice  over  fhime  requires  customers  to  build  and  maintain  PVCs  to  each  remote  location, 
which  can  be  unwieldy  in  large  networks. 


Headquarters 


MPLS 


work,”  says  Zeus  Kerravala,  a  vice  president  at 
The  Yankee  Group.  He  says  AT&T  might  be  lag¬ 
ging  behind  some  competitors  because  it  has 
invested  time  in  improving  customer  service 
support.  AT&Ts  Business  Direct  Web  portal  lets 
Enhanced  VPN  customers  access  real-time 
network  performance  statistics  and  view 
invoices. 

Equant  has  offered  multinational  VoIP  sup¬ 
port  with  its  managed  VPN  service  that  reach¬ 
es  approximately  240  countries  for  more  than 
two  years.  “Equant  is  probably  our  prime 
competitor  with  this  offerr  says  Joe  Aibinder, 
director  of  AT&T  voice  over  Internet  services. 

Equant’s  service,  like  AT&Ts,  is  based  on  the 


International  Telecommunication 
Union’s  (ITU)  H.323  VoIP  specifi¬ 
cation.  MCI  offers  a  similar  service 
domestically  but  uses  the  Session 
Initiation  Protocol  standard, 
which  is  believed  to  be  the  supe¬ 
rior  of  the  two  technologies.  As 
new  VoIP  applications  emerge 
they  will  be  based  on  SiP  not 
H.323,  Kerravala  says. 

AT&T  says  it  is  using  SIP  signal¬ 
ing  in  the  core  of  its  network  and 
will  be  able  to  upgrade  to  SIP- 
compliant  devices  and  ap¬ 
plications  when  the  technology  is 
more  mature. 

AT&T  would  not  provide  pricing 
or  service-level  agreement  (SLA) 
information  for  the  VoIP  offering, 
saying  it  is  “too  premature,”  consid¬ 
ering  the  service  might  not  rollout 
until  June. 

Besides  cost,  Kerravala  advises 
customers  to  look  at  standard 
SLA  items  such  as  latency,  packet 
loss  and  jitter. 

AT&T  says  it  will  include  MOS 
measurements  on  its  Business 
Direct  Web  Portal,  where  customers  can  moni¬ 
tor  performance  on  their  VPN.  It  also  says  it 
will  provide  standard  latency  packet-loss  and 
jitter-performance  information  for  customer’s 
voice  traffic. 

The  carrier  says  if  will  offer  its  Enhanced 
VPN  VoIP  users  a  flat  rate  for  domestic  calling 
and  users  should  expect  to  pay  3  cents  or  less 
per  minute  for  off-net  international  calls.  ■ 


■  AT&T  developing  early  warning  tool 
for  viruses.  PAGE  31 
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YDU  COULD  PIECE  TOGETHER  YOUR  OWN 
DISK-BASED  BACKUP  SYSTEM. 


BUT  WHY  WOULD  YDU? 
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The  Quantum 
DX30.  Nothing  else 
comes  close. 


0X30 

-  Nothing  else  comes  close. 

Quantum 

EMC 

StorageTek* 

Generic 

DX30 

ClARiiON* 

BladeStore 

RAID 

□ 

□ 

□ 

1.  Optimized  specifically  for  backup 
and  restore. 

□ 

□ 

□ 

2.  Installs  and  integrates  into  your  existing 
environment  in  just  minutes. 

□ 

□ 

□ 

3.  Requires  zero  disk  tuning  to  achieve  and 
maintain  maximum  performance. 

□ 

□ 

□ 

4.  Can  be  shared  with  multiple  servers 
through  VERITAS™  SSO. 

□ 

□ 

□ 

5.  Uses  existing  backup  policies 
and  procedures. 

Not  all  disk-based  backup  is  created  equal.  More  IT  professionals  have  chosen 
to  install  the  Quantum  DX30  solution  than  any  other  disk-based  backup  product.*  And  for 
good  reason.  The  Quantum  DX30  delivers  complete  and  hassle-free  optimized  backup  and 
restore  functionality  to  your  data  center.  It  integrates  quickly  and  seamlessly  with  your  existing  backup 
software  and  preserves  all  of  the  processes  that  you  have  built  to  ensure  that  your  company 
has  a  bulletproof  data  protection  plan. 

Optimized  for  your  backup  environment.  RAID  arrays  designed  for  general-purpose 
storage  applications  simply  are  not  designed  to  work  with  the  tape  functionality  of  backup 

software  packages  and  require  tuning  and  management  nearly 
identical  to  that  of  your  primary  storage.  You  certainly  could  use  an  off-the-shelf 
array  to  stage  your  backup.  But  since  Quantum  has  already  taken  the  guesswork  out 
of  doing  it  yourself,  why  wouldn't  you  choose  the  DX30  for  your  disk-based 
backup  solution? 

Put  it  all  together.  Visit  us  on  the  Web  at  vvww.quantum.com/diskbackup 

to  receive  your  FREE  whitepaper  entitled,  "Enhanced  Backup  —  Delivering  Value  with 
an  Qptimized  Backup  Appliance." 
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Calif,  anti-spam  iaw  caiied  excessive 

Experts  say  toughest-in-the-nation  legislation  could  hurt  legitimate  senders. 


California's  answer  to  spam 

state  joins  more  than  30  others  in  legislating  Junk  e-mail. 


What: 

SB  186,  a  law  enacted  last  week  that  makes  it  illegal  for 
spam  to  be  sentfrom  California  onto  a  California  resident 

When: 

Takes  affect  Jan.1. 

Target: 

Companies  sending  unsolicited  commercial  e-mail  that 
stand  to  benefit  financially.There  are  exemptions  for 
sending  e-mail  to  recipients  who  have  opted  in,  and  for 
companies  that  have  existing  business  relationships 
with  recipients. 

Who 

can  sue: 

Individuals,  companies,  ISPs  and  the  state  of  California. 

Fines: 

$1,000  for  each  unsolicited  e-mail  sent,  up  to  $1  million 
for  each  spam  campaign. 

■  BY  CARA  GARRETSON 

While  California’s  tough  new 
anti-spam  law  aims  to  stomp  out 
unwanted  commercial  e-mail, the 
legislation  enacted  last  week 
could  also  hamstring  legitimate 
businesses  looking  to  communi¬ 
cate  with  customers. 

Ramifications  of  the  state’s 
Senate  Bill  186, signed  into  law  by 
Gov. Gray  Davis, will  be  felt  all  over 
the  country  because  it  applies 
not  only  to  e-mail  sent  from 
California  but  also  to  all  messages 
sent  to  residents  of  the  state,  crit¬ 
ics  say  They  say  the  law  will  do  lit¬ 
tle  to  deter  professional  spam¬ 
mers  responsible  for  the  majority 
of  clutter  in  e-mail  boxes,  and 
force  businesses  that  e-mail  their 
customers  to  spend  extra  time 
and  money  ensuring  they  have 
recipients’  consent.  The  law 
makes  it  a  crime  to  send  spam, 
slapping  a  $1,000  fine  for  each 
unsolicited  e-mail  sent,  and  lets 


individuals,  ISPs  or  the  state  file 
suit  against  alleged  spammers  or 
the  company  doing  the  advertis¬ 
ing  or  promoting  in  the  e-mail. 

“E-mail  is  a  very  legitimate  way 
for  individuals  and  businesses  to 
communicate,’’says  Bill  Glazier, 
vice  president  of  marketing  at 
anti-spam  service  vendor  Postini. 
“Any  law  that  restricts  the  legiti¬ 
mate  use  of  e-mail  is  unfortunate.” 

The  law  makes  it  illegal  to  send 
e-mail  that  advertises  or  promotes 
goods,  services  or  credit  without 
the  direct  consent  of  the  recipi¬ 
ent.  Direct  consent  is  defined  in 
the  law  as  a  positive  response  to  a 
“clear  and  conspicuous  request” 
from  the  sender  asking  if  the 
recipient  wants  to  receive  the 
e-mail  —  also  known  as  opt-in  — 
or  a  direct  request  from  the 
sender  to  receive  the  e-mail. 

The  law  is  unclear  on  whether 
companies  that  purchase  lists  of 
e-mail  addresses  from  list  bro¬ 
kers  have  the  direct  consent  of 


recipients. 

Considered  the  most  sweeping 
and  stringent  anti-spam  law  to 
date, it  could  become  a  model  for 
other  state  or  federal  efforts.  “The 
time  has  come  for  unscrupulous 
spammers  to  stop  feeding  our 
e-mail  in-boxes  a  daily  diet  of  un¬ 
wanted  e-mail,”  Davis  said. 

Many  companies  that  depend 
on  e-mail  marketing  and  commu¬ 
nication  have  built  internal  data¬ 
bases  of  customers  who  have 
opted  in  to  receive  e-mail,  says 
Brian  Niles, CEO  ofTargetX.com, a 
provider  of  e-mail  marketing  soft¬ 
ware  and  services,  and  therefore 
shouldn’t  be  negatively  affected 
by  the  law. 

“It’s  the  people  renting  out 
e-mail  lists  and  doing  prospect¬ 
ing  —  the  law’s  going  to  affect 
them,”  he  says.“For  folks  thinking 
of  building  an  in-house  data¬ 
base,  this  law  may  give  them 
more  of  an  incentive  to  look  in 
that  direction.” 


But  there’s  significant  expense 
associated  with  building  an  in- 
house  database  of  opt-in  recipi¬ 
ents.  And  given  the  California 
law’s  hefty  fines,  even  companies 
that  already  have  such  databases 
would  be  wise  to  scour  them  to 


ensure  they  have  consent  —  and 
can  prove  it  —  before  hitting  the 
send  button,  says  Deborah 
Thoren-Peden,  a  partner  with  law 
firm  Pillsbury  W^inthrop.This  law 
will  probably  cost  companies  a 
See  Anti-spam,  page  16 


IEEE  pushes  for  faster  WLAN  throughput 


■  BY  JOHN  COX 

Think  about  a  wireless  LAN 
with  enough  throughput  to 
match  your  switched  Ethernet 
infrastructure. 

That’s  what  the  IEEE  is  thinking 
about. 

Last  week,  the  international  stan¬ 
dards  group  launched  a  working 
group  charged  with  crafting 
changes  to  the  802. 1 1  WLAN  stan¬ 
dard  so  that  these  networks  would 
deliver  at  least  lOOM  bit/sec.  That 
number  is  throughput  —  what 
users  see  when  they  transfer  a  file 
—  as  distinct  from  the  data  rate, 
which  is  the  raw  speed  before  you 
subtract  the  overhead  associated 
with  the  protocol. 

In  the  case  of  802.11,  the  over¬ 
head  adds  up  to  a  whole  lot,  typi¬ 
cally  more  than  half  of  the  data 
rate.  An  802.11b  access  point, 
rated  at  IIM  bit/sec,  typically 
gives  a  throughput  of  less  than  6M 
bit/sec.  Tlie  802.11a  and  802.1  Ig 
haniware  can  give  users  about 
18M  to  22M  bit/sec.  The  data  rate 
for  froth  Ls  SIM  bit/sec. 

Silii'on  makers  have  boosted 
WLAN  throughput  to  about  lOOM 
bit/s<x-.Tlie  catch  is  that  you  have 
to  hdVi  the  same  chips  in  both 
the  i.Iient  and  the  access  point. 


Something  old,  something  new 

A  primer  on  the  IEEE’s  WLAN  efforts,  including  the  new 
802.11n  high-throughput  technology. 


In  the  works: 

802.11d 

Enables  802.11  hardware  to  work  in  various  countries  where 
it  can't  today. 

802.11e 

Enhances  the  802.11  Media  Access  Control  layer  for 
quality-of-service  features,  such  as  prioritizing  voice 
or  video  traffic. 

802.11f 

Recommends  practices  forWLAN  equipment  makers  so 
that  all  their  802.11  access  points  can  interoperate. 

802.11h 

Supports  measuring  and  managing  the  5-GHz  radio  signals 
in  802.11aWLANs. 

802.111 

Repairs  weaknesses  in  the  Wired  Equivalent  Privacy 
encryption  scheme. 

802.11k 

Creates  a  way  for  access  points  to  pass  specific  radio 
frequency  health  and  management  data  to  higher-level 
management  applications. 

802.11n 

Designed  to  boost  throughput,  not  raw  data  rate,  to  100M 
bit/sec.The  idea  is  to  make  WLANs  feel  like  100M  bit/sec 
switched  Ethernet  LANs. 

In  the  books: 

802.11a 

Describes  WLANs  for  the  5-GHz  band,  with  a  data  rate 
of  54M  bit/sec. 

802.11b 

WLANs  in  the  2.4-GHz  band,  11M  bit/sec  data  rate. 

802.11g 

Also  in  the  2.4-GHz  band,  but  uses  802.11a  modulation  to 
reach  54M  bit/sec. 

and  high  throughput  sacrifices 
conformity  to  the  802.11  specifi¬ 
cation.  Atheros  Communications, 
the  first  vendor  with  a  54M  bit/sec 
802.11a  chipset,  markets  CMOS 
chips  that  support  what  it  calls 
“Super  G”  and  “Super  A/G”  —  pro¬ 
prietary  boosts  of  up  to  lOOM 
bit/sec  throughput. 

Atheros  plans  to  contribute 
these  and  other  technologies  to 
the  802.1  In  task  group,  as  it’s 
called  in  IEEE  terms.“The  greatest 
challenge  will  be  to  deliver  higher 
performance  while  reducing 
power  and  cost,”  says  Craig  Bar- 
ratt,  Atheros  president  and  CEO. 

A  reason  to  embrace  wireless 
technologies  is  that  high-through- 
put  WLANs  will  eliminate  cabling 
costs. That’s  only  true  of  the  wires 
needed  to  connect  clients  to 
wiring  closets.  WLAN  access 
points  need  to  link  via  Ethernet 
cable  to  wiring  closet  switches. 

Network  executives  already 
seem  to  be  discounting  high- 
throughput  claims  that  are  based 
on  their  WLAN  experience. 
“Unless  you  are  sitting  right  under 
the  access  point,you  just  don’t  get 
the  maximum  throughput,"  says 
Dewitt  Latimer,  deputy  CIO  and 
CTO  at  the  University  of  Notre 
Dame  in  South  Bend,  Ind. 


WLAN  throughput  falls  off  the 
farther  a  client  device  moves 
from  an  access  point.  The  drop 
depends  on  how  much  metal, 
wood,  concrete  and  other  con¬ 
struction  materials  is  between  the 
two  devices.  In  almost  every  case 
today,  an  access  point  is  a  shared 
medium:  whatever  throughput  it 
can  deliver  is  divvied  up  among 
the  users  connected  to  that 
access  point. 

“Most  practical  applications, 
such  as  three  students  sitting 
under  a  tree  working  on  a  paper 
[with  wireless  notebooks], tend  to 
be  insensitive  to  bandwidth.  I 
don’t  think  high-throughput 
WLANs  will  be  a  big  driver  until 
we  see  things  like  streaming 
media  applications  being  unteth¬ 
ered,”  he  says. 

The  802.1  In  task  group’s  first 
order  of  business  will  be  to  define 
a  group  of  application  scenarios, 
describing  how  the  high-through¬ 
put  technology  will  be  used.  In 
turn,  these  become  the  basis  for 
evaluating  and  comparing  what’s 
expected  to  be  several  technolo¬ 
gies  contributed  by  different  ven¬ 
dors,  according  to  Brian  Mathews, 
publicity  chair  for  the  IEEE  802. 1 1 
Work  Group  that  oversees  this 
standards  work.H 
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It's  time  for  the  death  of  fingerpointing. 


1  wireless  vendor  + 1  wireline  vendor  + 1  problem  =  multiple  places  to  place  blame.  That's  when  problems 
can  really  multiply.  And  that's  time  for  Sprint.  Sprint  built  its  wireline/wireless  network  from  the  ground  up. 
Designed  it  specifically  for  greater  reliability  and  security.  We  stand  behind  it.  And  our  industry-leading 
SLAs  back  it  up.  Let  us  show  you  how  end-to-end  accountability  works.  Especially  if  you  have  a  network 
that  doesn't.  Its  time  for  Sprint.  Go  to  sprintbiz.comAime,  or  call  1 877  519-1713. 


One  Sprint.  Many  Solutions.*' 
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Web  services  mgmt.  gathering  steam 


Upgrade  path 

Actional  and  AmberPoint  this  week  will  upgrade  their 
products  for  Web  services  management. 


Vendor 

Product 

Description 

Actional 

Actional 

5.0 

Adds  three  features;  SoapStation  Edge, 
combines  firewall  and  monitoring  agent; 
Service  Stabilizer,  self-healing 
technology;  Looking  Glass  MyServices, 
creates  custom  views  of  select  group 
of  Web  services. 

AmberPoint 

Exception 

Manager 

Third  product  in  lineup,  Exception 
Manager  detects,  diagnoses  and 
resolves  exceptions  in  operation  ofWeb 
service.  Includes  Exception  Workbench 
to  define  exceptions. 

■  BY  JOHN  FONTANA 

With  management  still  a  major 
question  in  the  Web  services 
model,  start-ups,  major  vendors 
and  standards  bodies  are  step¬ 
ping  up  efforts  to  provide  answers 
to  corjiorate  customers. 

This  week.  Actional  and  Amber- 
Fbint  will  unveil  upgrades  to  their 
Web  services  management  plat¬ 
forms.  And  the  Web  Services 
Distributed  Management  techni¬ 
cal  committee  at  the  Organiz¬ 
ation  for  the  Advancement  of 
Structured  Information  Standards 
(OASIS)  will  meet  to  discuss  the 
creation  of  standard  manage¬ 
ment  protocols.  The  group  plans 
to  have  an  initial  specification  de¬ 
fined  early  next  year. 

And  next  month  start-up  West- 
bridge  Technology  will  enhance 
the  management  capabilities  of 
its  software. 

This  activity  follows  HP’s  pur¬ 
chase  of  Web  services  manage¬ 
ment  start-up  Talking  Blocks  ear¬ 
lier  this  month  and  Computer 
Associates’ acquisition  of  Adjoin, 
another  start-up,  in  July 


“Companies  like  HP  and  CA 
are  jumping  into  the  market 
whole-hog,”  says  Jason  Bloom¬ 
berg,  an  analyst  with  ZapThink, 
“They  want  their  tools  to  be  fully 
enabled  for  Web  services  man¬ 
agement.  And  the  smaller  players 
are  trying  to  get  enough  traction 
for  when  the  big  guys  start  to 
sign  up  customers.” 

Bloomberg  says  companies 
realize  that  next  year  there  will  be 
a  broader  acceptance  of  Web  ser¬ 
vices  and  service-oriented  archi¬ 
tectures  (see  related  story  page 
63).V/ith  that  will  come  the  need 
for  software  focused  on  the  ack¬ 
nowledged  weak  points  of  Web 
services:  security,  reliable  messag¬ 
ing,  business-process  workflow 
and  management. 

“You  can  build  Web  services 
easy  enough,  but  management  so 
you  can  promote  reuse  is  really 
important,"  says  Scott  Dowell,  IT 
manager  for  Science  Applications 
International,  which  is  in  the  early 
stages  of  building  a  services-ori- 
ented  architecture.  “Once  we 
started  to  expand  our  Web  ser¬ 
vices,  such  as  with  our  employee 


self-service  portal,  we  knew  we 
had  to  get  something  to  help 
manage  those  services,”  says 
Dowell,  who  uses  software  from 
Actional. 

Actional  next  week  will  pro¬ 
vide  additional  help  with  the  re 
lease  of  Actional  5.0.  New  fea¬ 
tures  include  SoapStation  Edge,a 
Web  services  broker  with  an  inte 
grated  XML  firewall  that  includes 


access-control  and  message- 
integrity  capabilities. 

“IT  thinks  of  management  now 
as  how  to  monitor  things  and  we 
do  a  lot  of  that.  But  we  are  now 
laying  down  key  infrastructure 
components  and  control  mecha¬ 
nisms  so  you  can  see  what’s 
going  on  and  change  it  to  rectify 
problems,”  says  James  Phillips, 
chief  strategist  for  Actional. 


AmberPoint  is  adding  to  its  cap¬ 
abilities  with  its  Exception  Man¬ 
ager,  which  can  detect  faults  or 
problems  within  messages. 

Competitor  Westbridge  also 
has  advancements  in  the  works 
with  the  release  next  month  of  its 
XMS  3.0.  The  software  will  focus 
on  managing  collections  of  Web 
services  that  are  part  of  a  larger 
Web  service. 

These  three  small  vendors,  and 
competitors  such  as  Blue  Titan, 
Confluent  and  Infravio,  are  bat¬ 
tling  major  management  vendors 
that  also  are  eyeing  Web  services. 

HP’s  purchase  of  Talking  Blocks 
was  a  move  to  incorporate  Web 
services  management  into  the 
company’s  broader  Adaptive 
Infrastructure  model.  And  CA 
plans  to  use  its  acquisition  of 
Adjoin  to  build  Web  services  into 
its  broader  UniCenter  platform. 
Later  this  year,CA  is  scheduled  to 
release  UniCenter  Web  Services 
Distributed  Management,  which 
uses  a  set  of  agents  to  automati¬ 
cally  discover  Web  services  and 
monitor  service  characteristics 
of  Web  services  transactions. 

IBM  is  integrating  its  Web¬ 
Sphere  application  server  and  its 
Tivoli  management  software  to 
address  service-oriented  archi¬ 
tectures.  Microsoft  is  scrambling 
to  define  its  management  strat¬ 
egy  based  on  its  Distributed  Sys¬ 
tems  Initiative.  Next  month  the 
company  will  announce  it  is  inte 
grating  tools  from  AmberPoint 
with  Visual  Studio.Net  so  devel¬ 
opers  can  buijd  applications  that 
are  management-aware. 

In  the  background,  OASIS  is 
developing  standards  that 
would  let  corporate  users  mix 
and  match  software  from  all 
these  vendors. 

Two  weeks  ago,  CA,  IBM,  and 
Talking  Blocks  submitted  a  pre 
posal  called  WS-Manageability 
which  defines  what  it  takes  to 
manage  a  Web  service.  In  July,  HP 
submitted  its  Web  Services  Man¬ 
agement  Framework. 

OASIS’s  Web  Services  Distrib¬ 
uted  Management  Group  hopes 
the  two  will  form  the  foundation 
for  a  single  protocol  not  only  to 
manage  Web  services  but  also  to 
build  Web  services  interfaces  into 
management  software.  ■ 


IBM  gives  on-demand  computing  a  boost 


■  BY  ANN  BEDNARZ 

IBM  sought  to  advance  its  $10  billion  on- 
demand  computing  initiative  on  several 
fronts  last  week,  announcing  new  grid  soft¬ 
ware  for  aggregating  com¬ 
puting  resources  and  mid¬ 
dleware  for  extending  busi¬ 
ness  applications  to  mobile 
devices.  CEO  Sam 
Palmisano,  too,  lent  his 
weight  to  the  cause,  reiterat¬ 
ing  IBM's  on-demand  vision 
before  a  gathering  of  ven¬ 
ture  capitalists  and  software 
vendors. 

Grid  computing  is  a  key 
element  of  IBM’s  on-de¬ 
mand  strategy,  which  seeks 
to  make  software  and  sys¬ 
tems  more  responsive  to 
changing  business  needs.To 
that  end,  IBM  unveiled  grid  computing  appli¬ 
cations  tailored  to  companies  in  the  finan¬ 
cial  industry.  The  vendor  also  announced 
ongoing  grid  projects  with  a  handful  of  com¬ 
mercial  and  institutional  customers,  includ¬ 
ing  Morgan  Stanley  and  Hewitt  Associates. 

IBM  teamed  with  business-intelligence  soft¬ 
ware  maker  SAS  Institute  for  one  of  its  new 
vertical  grid  applications.  Grid  Offering  for 
An.ilylics  Acceleration.The  software  incorpo¬ 
rates  SAS's  credit-scoring  application  and  is 


aimed  at  providing  banks  with  tools  for  min¬ 
ing  customer  information  and  generating 
sophisticated  statistical  models  more  quickly, 
IBM  says. 

With  partner  DataSynapse,  IBM  developed 
Grid  Offering  for  Risk  Man¬ 
agement  and  Compliance 
to  help  businesses  in  the 
capital  markets  and  retail 
banking  industries  create  a 
grid  infrastructure  that  can 
support  real-time  credit- 
limit  monitoring. 

Separately,  IBM  an¬ 
nounced  product 

upgrades  and  partnerships 
in  support  of  its  pervasive 
computing  strategy,  an 
ongoing  effort  to  provide 
end  users  with  on-the-fly 
access  to  any  content,  from 
any  device,  on  any  net¬ 
work. 

New  to  its  portfolio  is  Eixtension  Services 
for  WebSphere  Everyplace,  embedded  mid¬ 
dleware  that  is  aimed  at  making  it  easier  for 
companies  to  deliver  enterprise  applications 
to  wireless  devices.  The  technology  doesn’t 
require  developers  to  rewrite  applications  for 
mobile  devices,  IBM  says.  With  Extension 
Services,  end  users  can  run  applications  on 
mobile  devices  that  are  intermittently  con¬ 
nected  to  the  network,  and  remotely  down¬ 


load  only  the  portions  of  applications  and 
data  they  need. 

Meanwhile,  Palmisano  addressed  about  300 
venture  capitalists  and  software  vendors  at 
IBM’s  Palisades,  N.Y,  facility  last  week,  where 
he  emphasized  on-demand  computing  and 
Big  Blue’s  commitment  to  partnering  with 
independent  software  vendors  (ISV). 

His  message,  which  was  echoed  by  each  of 
the  senior  IBM  executives  who  also  took  to 
the  podium,“stands  in  contrast  to  some  other 
large  software  companies  that  have  tended 
to  compete  with  venture-backed  companies 
and  independent  software  vendors,”  says 
Brooke  Coburn,  managing  director  at  venture 
capital  firm  Carlyle  Group  in  Washington, 
D.C.,who  attended  the  event. 

IBM  highlighted  partnership  opportunities 
and  the  importance  of  collaborating  with 
specialized  software  makers,  Coburn  says. 
Microsoft,  meanwhile,  is  putting  itself  in  a 
position  to  compete,  rather  than  partner,  with 
enterprise  application  vendors,  he  says.  “It’s 
just  a  matter  of  time  before  they  suck  all  of 
the  oxygen  out  of  the  ISV  market.” 

Palmisano  first  detailed  IBM’s  now  familiar 
on-demand  vision  last  October,  committing 
$10  billion  in  research  and  development, 
acquisition  and  marketing  funds  to  the  effort. 
He’s  not  alone.  Myriad  management, systems, 
server  and  storage  vendors  including 
Computer  Associates,  HP  Microsoft  and  Sun 
also  have  articulated  utility  computing  strate- 


Utility  computing 
gap 

Technology  vendors 
expect  to  deliver  pay-as- 
you-go  IT  infrastructure 
within  three  to  five  years, 
but  users  expect  it  within 
18  to  24  months,  says 
consulting  firm 
Saugatuck  Technology. 


Riley's  band  took  second  place 
in  a  battle  of  the  bands  contest. 
They  won  some  hair  gel 
and  a  Neil  Diamond  album. 
Keep  on  rockin',  Riley. 


Nothing  beats  number  one. 


RETINA®  The  #1  Rated  Network  Security  Scanner 

Superior  Vulnerability  Assessment  &  Remediation 

Would  you  trust  the  security  of  your  network  to  anyone  but  the  industry  leader?  Introducing 
Retina,  the  industry's  #1  rated  vulnerability  assessment  solution  from  eEye  Digital  Security. 
Retina  uses  non-intrusive  tests  to  assess  your  network,  accurately  identify  weakness  and 
provide  comprehensive  detail  to  enable  complete  remediation.  Take  control  of  your  network 
and  let  Retina  simplify  your  risk-reduction  process.  Because  nothing  beats  number  one. 

Download  RETINA  Trial  Version  &  Receive  a  FREE  COFFEE  MUG* 

Visit:  www.eeye.com/DemoMug 


eEye®^  Digital  Security 


Vulnerability  is  over. 


^MutiWnrV 


2002  The  Best 
of  the  Tests 
Network  World 


UK 


iWARD 


2002  Blue 
Ribbon  Award 
Network  World 


2003  Excellence 
Award 

Information  Security 


2002  Target  Awards 
W2Knews 


miwf 


2001  5  Star  Rating 
SC  Magazine 


C  2003  eEye  Digital  Sacunty.  AH  rights  rasarveO.  AH  tradamarks  and  ragista'ad  tradamarks  ara  proparty  of  thair  raspactiva  companies. 


*  Offer  valid  in  continantal  US  white  suppiias  last.  Sea  waOsrta  for  details. 


NetworkWofi^ 


9/29/03  News 


www.nwfusion.com 


3Com  jumps  back  into  router  arena 


■  BY  PHIL  HOCHMUTH 

3Com  will  revive  another  of  its 
previously  abandoned  enterprise 
network  lines  this  week  as  it 
launches  a  series  of  WAN  routers 
for  enterprise  branch  and  central 
offices. 

The  3Com  Router  5000  series  is 
designed  to  connect  corporate 
sites,  from  small  branch  to  large 
regional  offices,  with  a  variety  of 
WAN  links.The  gear  is  also  part  of 
3Com’s  strategy  to  offer  a  com¬ 
plete  network  product  menu  — 
from  network  interface  cards  to 
switches  and  routers,  IP  teleph¬ 
ony  and  security  gear  —  with  a 
common  management  platform 
across  the  portfolio. 

Observers  say  the  router  launch 


is  a  good  step  in  3Coms 
road  back  into  large 
corporate  networks, 
although  image  chal¬ 
lenges  linger  because 
of  the  company’s  re¬ 
treat  from  that  market 
several  years  back. 

In  addition  to  sup¬ 
porting  a  variety  of 
WAN  options,  such  as 
T-1,  frame  relay  and 
ISDN,  the  new  5000 
series  boxes  also  in¬ 
clude  integrated  IP 
Security  VPN  functionality  and 
firewall  capabilities  with  stateful 
packet  inspection  and  traffic  fil¬ 
tering.  3Com  says  quality  of  ser¬ 
vice  also  has  been  added  into  the 
5000  series  router  software,  letting 


NetlQ  refreshes 
systems  mgmt.  tools 

■  BY  DENISE  DUBIE 

NetlQ  this  week  is  scheduled  to  ship  software  that  builds  on  its  exper¬ 
tise  in  managing  Windows  environments  but  that  also  extends  its  reach 
into  networks  where  other  operating  systems  are  prevalent. 

Version  3.0  of  AppAnalyzer,  a  program  that  reports  on  usage  and 
other  aspects  of  assorted  Microsoft  software,  now  includes  support  for 
Windows  Server  and  Exchange  2003.  The  software  features  new 
Outlook  Web  Access  usage  reporting,  meaning  it  can  help  network 
managers  track  the  top  users  logging  on  to  Outlook  via  the  Web,  the 
browsers  being  used  and  the  time  of  day  or  week  for  peak  usage. This 
data  then  can  be  used  to  more  efficiently  balance  loads  across  servers, 
the  company  says. 

Pricing  will  be  $600  for  a  100-user  mailbox  pack.There  also  will  be  a 
$2,500  charge  for  the  WebAdmin  console  for  up  to  five  users. 

Also  new  is  a  Web  console  for  NetIQ’s  existing  AppManager.This  lets 
administrators  centrally  manage  Windows,  Unix  (AIX,  HP-UX  and 
Solaris)  and  Linux  platforms  from  any  browser. 

One  reason  NetlQ  needs  to  expand  its  offerings  from  being  Microsoft¬ 
centric  to  multivendor-oriented  is  that  recent  announcements  from 
Microsoft  show  it  plans  to  do  more  to  manage  its  own  systems. 
Currently,  NetlQ  has  the  biggest  share  of  the  Windows  systems  man¬ 
agement  market,  analysts  say 

“NetlQ  will  face  more  and  more  of  the  onslaught  of  Microsoft  as  a 
direct  competitor,  and  obviously  that  is  not  a  good  position  to  be  in," 
says  Glenn  O’Donnell,  a  research  director  with  Meta  Group.“Microsoft 
provided  them  a  great  stream  of  short-term  revenue,  but  it  could  dimin¬ 
ish  in  two  to  three  years.” 

The  core  AppManager  technology  runs  on  Windows,  while  Unix 
boxes  are  monitored  through  agents.  NetlQ  monitors  many  compo¬ 
nents  in  the  application  infrastructure,  including  various  flavors  of 
Unix-based  Web  servers,  application  servers,  load  balancers,  cluster 
supfx)rt,  e-mail,  and  file  and  disk  managers. 

The  Web  Console  costs  $2,500  for  five  concurrent  users.  Modules  for 
NetlQ's  Web  infrastructure  man¬ 


agement  solution  start  at  $750 
per  sener. 

A  30<iay  free  trial  of  App- 
Anal>'zer  2.5  can  be  down¬ 
loaded  from  www.nwfusion. 
com.  DocRnder  7847  ■ 
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3Com's  Router  5000  series  includes  models  for  branch 
offices  as  well  as  headquarters. 


delay-sensitive  WAN  traffic  — 
such  as  voice  over  IP  —  be 
tagged  and  prioritized. 

The  new  product  line  includes 
the  5009,  with  a  single  WAN  inter¬ 
face  module  slot  for  small 
branch  offices,  the  three-slot 
5231  for  regional  offices,  and 
four-slot  5640  and  eight-slot  5680 
for  consolidating  WAN  links  at  a 
company’s  headquarters.  WAN 
modules  for  the  5000  series 
include  full  and  fractional  T-1/ 
E-1,  Primary  Rate  Interface,  ISDN 
and  lO/lOOM  bit/sec  Ethernet 
products.  All  5000  series  mod¬ 
ules  are  interchangeable. 

The  5000  series  launch  is  a  re¬ 
prise  of  3Com’s  earlier  Path- 
Builder  product  line,  which  in¬ 
cluded  WAN  routing, VPN  and  fire¬ 
wall  products  for  midsize  and 
large  organizations.  This  line  was 
discontinued  in  2000,  along  with 
3Com’s  CoreBuilder  LAN  switch¬ 
ing  line. 

One  user  of  SCom’s  old  Path- 
Builder  routers,  Jevic  Transporta¬ 
tion  of  Delanco,  N.J.,  plans  to 
install  the  5000  series  routers  in  its 
12  offices  nationwide. 

“We’d  been  using  the  older 
3Com  routers  after  they  discon¬ 
tinued  the  product,  and  they 
worked  fine  for  us,”  says  Anthony 
Holden,  senior  datacom  analyst 
for  Jevic,  which  operates  a  cross¬ 
country  freight  delivery  service. 
“3Com  kept  giving  us  good  sup¬ 
port  for  those  products.” 

TTie  5000  series  boxes  will  con¬ 
nect  Jevic  sites  via  point-to-point 
T-1  connections.  Jevic  uses  its 
WAN  to  run  an  application  that 
syncs  up  freight  delivery  informa¬ 
tion  in  real  time. 

The  5000  series  routers  are 
resold  from  Huawei  Technol¬ 
ogies.  The  5000  is  based  on 
Huawei’s  Quidway  WAN  routers, 
which  have  been  sold  in  Asia  for 
the  past  two  years  with  an  in¬ 
stalled  base  of  about  160,000 
units,  according  to  3Com.  3Com 
this  March  announced  a  joint 


venture  with  Huawei, 
which  let  it  sell  3Com- 
branded  chassis 
switches  and  routers. 

Shortly  before  the 
joint  venture  was  an¬ 
nounced,  Cisco  sued 
Huawei,  saying  the 
company  violated 
Cisco  intellectual  prop¬ 
erty  and  copyrights.  A 
federal  court  in  June 
ruled  that  Huawei  must 
remove  code  similar  to 
Cisco’s  lOS  code  from 
its  products  and  stop  distributing 
product  manuals  that  are  similar 
to  Cisco’s.  3Com  says  the  5000 
series  does  not  violate  any  Cisco 
intellectual  property 

In  launching  a  line  of  routers, 
3Com  says  it  hopes  to  attract 
enterprise  network  customers 
looking  for  an  alternative  to 
Cisco,  which  dominates  the  enter¬ 
prise  access  router  market  with 
about  70%  market  share. 

“3Com  has  made  its  bet,  and 
that’s  to  become  a  major  enter¬ 
prise  player  again,”  says  Zeus 
Kerravala,  an  analyst  with  The 
Yankee  Group.  And  with  the  5000 
series  release,  he  says,  “this  might 
work.  There  isn’t  much  out  there 
to  challenge  Cisco  in  the  router 
market.  At  least  this  is  an  alterna¬ 
tive.”  Kerravala  says  3Com’s 
biggest  challenge  will  be  getting 
back  on  buyers’ short  lists  of  end- 
to-end  vendors.  “3Com  didn’t 
burn  its  bridges  with  large  enter¬ 
prise  customers,  but  it  did  singe 
them,”  he  says. 

3Com  says  its  5000  series  gear 
will  be  priced  at  about  30%  to 
50%  less  than  comparably 
equipped  Cisco  routers.  Along 
with  underselling  Cisco,  another 
part  of  3Com’s  enterprise  strat¬ 
egy  is  to  offer  an  end-to-end  net¬ 
work  management  system  and 
feature  set.  This  includes  the 
3Com  Network  Administrator 
software,  which  it  also  launched 
this  week.  The  management 
application  lets  administrators 
configure  and  monitor  both 
Huawei-based  3Com  gear,  such 
as  the  Switch  7700  and  the 
Router  5000  series,  and  existing 
SuperStack  LAN  and  NBX  IP 
telephony  gear. 

The  3Com  5009  is  priced  at 
$1,400,  and  the  5231  is  priced  at 
$2,500.  The  5640  and  5680  cost 
$4,000  and  $6,500,  respectively  All 
hardware  will  be  available  next 
month.  The  3Com  Network  Ad¬ 
ministrator  is  expected  to  ship  in 
November  for  $5,000.  ■ 


Anti-spam 
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significant  amount  of  money  to 
come  into  compliance,”Thoren- 
Peden  says.  “Companies  will 
have  to  drill  down  to  every 
aspect  of  their  business  [to  see 
if]  they  have  e-mail  lists  that 
touch  California, and  make  sure 
they  have  consent.” 

The  law  also  stipulates  that  all 
legitimate  commercial  e-mail 
must  contain  an  opt-out  option 
so  that  recipients  can  have  their 
name  removed  from  e-mail  lists 
by  checking  a  box  on  a  Web  site 
or  calling  a  toll-free  number. 
This  stipulation  changes  the  opt- 
out  option  from  a  one-time 
opportunity  given  to  recipients 
when  they  sign  up  to  receive 
e-mails  to  an  on-going  chance 
to  halt  electronic  communica¬ 
tion, Thoren-Pfeden  says. 

The  new  law  empowers  indi¬ 
viduals  and  companies,  not  just 
the  state  government,  to  go  after 
spammers. 

However,  it’s  questionable  how 
many  will  do  so,  says  Andres 
Kohn,  director  of  product  man¬ 
agement  at  anti-spam  software 
start-up  Proofpoint.  “Companies 
are  trying  to  cut  their  costs, 
they’re  not  going  to  go  to  court 
and  prosecute  spammers  on 
their  own,”  he  says.  And  histori¬ 
cally  state  prosecutors  have  not 
focused  on  pursuing  spam 
cases,  Kohn  adds. 

“It  doesn’t  matter  what’s  in  the 
law  if  the  law  goes  unenforced. 
And  pretty  much  all  spam  laws 
go  unenforced,”  echoes  Paul 
Hoffman,  director  of  the  Inter¬ 
net  Mail  Consortium. “California 
has  no  money,  so  how  are  we 
going  to  enforce  it?” 

Whether  legislation  —  partic¬ 
ularly  on  a  state  level  —  can 
thwart  spam  is  a  topic  of 
debate. Thirty  states  have  spam 
laws  on  their  books,  and  a 
handful  of  bills  are  wending 
their  way  through  Congress, 
although  no  federal  law  has 
been  enacted. 

That  leaves  businesses  with  a 
patchwork  of  state  laws  to  con¬ 
sider  when  sending  e-mail,  and 
forces  them  to  try  to  associate  a 
state  with  an  e-mail  address, 
which  isn’t  always  possible.  In 
addition,  any  federal  law  passed 
could  override  state  laws, 
depending  on  how  the  federal 
law  is  written,  which  could  ren¬ 
der  the  work  companies  do  to 
comply  with  state  laws  a  waste 
of  time. 

Senior  Editor  Carolyn  Marsan 
contributed  to  this  story. 
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performance  to  paint  a  rosier  VoIP  pic¬ 
ture  for  itself. 

Accentuating  the  positive 

All  this  is  not  to  say  that  VON  did  not 
serve  to  highlight  the  promise  of  VoIP 

Dennis  Baron,  senior  project  director 
of  information  systems  at  the  Massa¬ 
chusetts  Institute  of  Technology  (MIT), 
discussed  how  the  university  and  several 
others  are  creating  an  inter-campus 
phone  network  as  an  alternative  to  the 
public  switched  telephone  network 
(PSTN)  using  Internet  2  and  SIP. The  net¬ 
work,  which  is  still  in  the  construction 
phase,  initially  will  link  Georgetown 
University  in  Washington,  D.C.,  with 
Harvard  University  and  MIT  in  Cam¬ 
bridge,  Mass.,  and  Texas  A&M  University 
in  College  Station. Ultimately, the  network 
would  serve  about  200  major  institu¬ 
tions,  Baron  said. 

“Right  in  the  aftermath  of  9/11,  it  was 
found  that  e-mail  was  the  best  way  to  com¬ 
municate,”  said  Baron,  recalling  that  dam¬ 
aged  regional  carrier  networks  and  an 
overloaded  national  phone  network 


made  calling  difficult.  “Many  [people  at 
universities]  also  found  that  SIP  phones 
were  useful,”  he  added. 

Based  on  this  premise,  the  network  will 
link  universities  via  Internet  2  and  Paetec 
Communications,  a  New  York  competitive 
local  exchange  carrier.  During  a  regional 
PSTN  failure,  calls  would  be  rerouted  to 
SIP-based  Broadsoft  softswitches  and 
media  servers  at  the  universities  and 
switched  over  Paetec’s  network,  where 
PSTN  calls  could  be  terminated.  Campus- 
to-campus  calls  could  be  made  freely 
among  universities  over  the  SIP-based 
network. 

Jeremy  George,  director  of  the 
advanced  networking  group  at  Yale 
University  in  New  Haven,  Conn.,  said  he 
holds  out  great  hope  for  SIP-based  pres¬ 
ence  applications  that  involve  voice, 
video  and  instant  messaging.  He  says 
users  of  Wi-Fi-enabled  devices,  3G 
phones  and  PDAs  that  communicate 
over  IP  will  drive  demand  for  presence 
applications. 

“Presence  is  the  technology  that  glues 
these  things  together,”  he  said. “It  will  let 
people  know  how,  when  and  where 
other  people  can  be  communicated 
with.”B 
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SIP-enabled  products  grab  spotlight 

Session  Initiation  Protocol  was  on  the  minds  of  vendors  introducing  products 
at  last  week's  Voice  on  the  Net  conference  in  Boston.  Nortel  introduced 
software  that  works  with  its  Multimedia  Communications'  Server  5100  and 
5200  designed  to  help  companies  build  applications  that  combine  voice,  video  and 
instant  messaging.  The  servers  are  IP-  and  SIP-based  phone  switches  for  enter¬ 
prise  and  carrier  networks. 

The  company's  Media  Application  Server  software  could  support  an  application 
such  as  a  handheld-based  client  that  uses  presence  features  to  set  up  an  IP  con¬ 
ference  based  on  voice,  video,  instant  messaging  ora  mix,  Nortel  said. The  soft¬ 
ware  runs  on  a  Windows-based  IBM  X335  Server,  starting  at  about  $700  per  client. 

Separately,  Spectel  announced  its  Open  IP-Enabied  Conferencing  suite  of  appli¬ 
cations,  based  on  SIP.  Spectel  said  the  product  lets  service  providers  offer  lower- 
cost  IP-based  multimedia  conferencing  and  presence  management  services  to 
customers.  The  company  said  the  software  also  can  be  deployed  with  SIP-based 
IP  PBXs  or  IP-enabled  PBXs,  from  companies  such  as  Avaya,  for  deploying  IP 
conferencing  applications  as  an  alternative  to  public  switched  telephone  network 
conferencing  inside  large  companies.  Pricing  was  not  released. 

On  the  security  front,  InGate  aired  its  SIParator  20  appliance.  The  box,  which 
supports  10  to  400  users,  would  sit  at  the  edge  of  an  enterprise  network  in  front  of 
a  firewall  and  process  SIP  traffic  that  would  otherwise  be  blocked.  InGate  says 
its  box  could  help  businesses  secure  SIP-based  conferencing  applications  without 
opening  holes  in  a  corporate  firewall. 

—  Phil  Hochmuth 


MY  LONC-TERM 
GAME  PLAM  FOB  THE 

SHORT-TERM  WORLD. 


The  market  is  volatile.  Consumer  confidence  is  fickle.  And  you’ve  got  a  business 
to  run.  Clearly,  you  need  business  systems  that  help  you  plan  accordingly.  SAP 
has  more  than  30  years’  experience  helping  companies  run  more  efficiently,  with 
everything  from  analytical  tools  that  help  you  take  decisive  action  to  an  open 
e-business  platform  that  helps  you  get  more  value  out  of  the  systems  you’ve  already 
invested  in.  So  no  matter  what  size  company  you  are,  we  have  a  long-tefm  plan  for 
you.  Visit  sap.com  or  call  us  at  800  880  1727 


THE  BEST-RUN  BUSINESSES  RUN  SAP 


C2003  SAP  AG.  SAP  and  ^  SAP  iogo  are  tradofnartfs  and  registered  bademadu  of  SAP  AG  in  Germany  and  sevwal  other  countries. 


Women 

continued  from  page  7 

the ‘lough  skin’  part  is  important.” 

Time  and  again,  women  at  the 
conference  complained  that  in 
order  to  work  in  IT  consulting 
and  sales,  they  were  told  they  had 
to  learn  golf  because  tliis  is  where 
business  is  done.  Or  they  had  to 
hang  out  in  the  bar  scene  drink¬ 
ing  or  pretend  to  like  sports 
because  this  is  how  customer 
relationships  in  a  male-dominat¬ 
ed  world  are  sealed.”!  eventually 
learned  to  like  golf,” said  one  con¬ 
ference  attendee  who  asked  not 
to  be  named,  adding  that  she 
faced  a  golf-or-go  mandate  at  her 
company 

By  the  numbers 

The  Information  Technology  As¬ 
sociation  of  America  (ITAA)  esti¬ 
mates  the  number  of  women  pro¬ 
fessionals  at  25.3%  out  of  an  IT 
workforce  of  3.6  million  workers. 

Recruiting  and  research  firm 
Sheila  Greco  Associates,  which 
for  five  years  has  tracked  upper- 
level  IT  hires  according  to  gender 
at  340  large  and  small  compa¬ 
nies,  figures  that  13%  of  IT  vice 
presidents  and  CIOs  are  women. 
Their  salaries  are  estimated  to  be 
about  9%  lower  than  men’s,  based 
on  available  data. 

The  number  of  women  in  IT 
management  hasn’t  changed 


HP  thinks 

■  BY  ROBERT  MCMILLAN 

HP  plans  to  deliver  a  slimmed- 
down  version  of  its  Utility  Data 


\  I  / 


■  THIS  WEEK'S  QUESTION; 

What's  the  name  of  the 
newTV  action  program 
about  a  computer 
technician  who  gains 
super  powers  when 
accidentally  infected 
with  nanotechnology? 

AnsKO-ttis  and  line  dckitional  questions 
onbu  and  you  could  nen  S500!  Visit 
Mmrk  WirM  hniM  and  enter  2349 
n  the  Search  t^. 

www.iiy.TMSion.coni 
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IfcSomewomen  are 
queen  bees -they  say, 
1  got  here  the  hardwa^ 
so  I'm  going  to  make  i1 
hard  [on  others].’  Hope 
Itilly,  we’ll  pass  that  91 

Mary  Ann  Davidson 

Chief  security  officer,  Oracle 

much  in  five  years,  says  Sheila 
Greco,  the  firm’s  president  and 
CEO.  But  she  says  there’s  also  a 
pattern  where  women  in  the 
upper  ranks  of  IT  will  hire  more 
women  than  men  will  —  about 
25%  more. 

That  women  earn  lower  salaries 
than  men  for  comparable  jobs  is 
not  likely  because  of  blatant  dis¬ 
crimination  per  se,  but  because 
women  often  start  out  in  less  pres- 


Center  aimed  at  midsize  busi¬ 
nesses  and  departmental  users, 
according  to  the  head  of  the 
company’s  new  Adaptive  Enter¬ 
prise  Program  Office. 

“We’re  looking  at  small-footprint 
UDCs,”says  Nora  Denzel,  who  also 
serves  as  senior  vice  president 
and  general  manager  of  HP’s  soft¬ 
ware  group.“We  don’t  have  an  all- 
in-one  solution  for  the  mid-mar¬ 
ket,  and  that’s  the  one  that  we’re 
going  to  build  nowf 

HP  has  prototypes  of  the  de¬ 
partmental  UDC  running  in- 
house  and  plans  to  introduce  the 
small-scale  offering  when  UDC 
2.0  is  announced  later  this  year, 
says  Nick  van  der  Zweep, director 
of  utility  computing  in  HP’s 
enterprise  systems  group. 

The  departmental  UDC  would 
cost  about  $100,000  —  much  less 
than  the  $800,000  starting  price 
of  HP’s  current  UDC  —  and  most 
likely  would  be  used  to  manage 
30  to  50  systems  running  a  single 
application,  according  to  HP 

“We  probably  will  do  a  sales 


tigious  jobs  that  paid  less,  ob¬ 
servers  say.  Companies  tend  to 
offer  salaries  based  on  previous 
compensation,  so  the  more  you 
made  before,  the  more  you  make 
the  next  time. 

“Women  have  a  little  catching 
up  to  do,”  said  Rhonda  MacLean, 
senior  vice  president  and  director 
of  corporate  information  security 
for  Bank  of  America.  “But  I’m 
proud  to  say  I  work  for  an  organi¬ 
zation  that  recognizes  that.” 

Surviving  in  a  man's  world 

While  the  event  in  Florida  con¬ 
tained  plenty  of  the  same  kind  of 
tech  talk  you’d  find  at  any  IT-relat- 
ed  conference,  some  of  strongest 
comments  pertained  to  how  to 
survive  and  thrive  in  a  man’s 
world. 

“Guys  keep  score.  They  like 
stats.  So  if  you  put  an  idea  on  the 
table,  measure  it.  Do  it  in  num¬ 
bers  or  they’ll  just  blow  you  off,” 
said  Peggy  Weigle,  CEO  at  securi¬ 
ty  firm  Sanctum,  during  a  panel 
discussion. 

While  Weigle  counts  many 
men  as  mentors  in  her  career, 
she  said  it  often  has  seemed 
hard  for  men  in  business  to  see 
her  as  a  person.  Many  women 
attending  the  conference  said 
men  brush  aside  their  comments 
and  then  steal  their  ideas. 

Not  surprisingly,  family  issues  re¬ 
main  a  big  topic  for  women  in  IT. 


campaign  around  specific  appli¬ 
cations,  maybe  into  the  ERP 
space,”  van  der  Zweep  says. 
Manufacturing  applications  also 
might  be  targeted  with  the  new 
product,  he  says. 

Another  feature  that  seems  cru¬ 
cial  to  a  departmental  UDC  is 
HP’s  Topology  Manager  software, 
which  will  be  rolled  out  partially 
in  UDC  2.0. The  software  uses  the 
Open  Grid  Services  Architecture 
standard  to  enable  UDCs  in  differ¬ 
ent  locations  to  share  resources 
and  appear  as  one  “virtual  data 
center^van  der  Zweep  says. 

HP  introduced  the  UDC  in 
November  2001  as  a  way  for 
companies  to  consolidate  IT 
resources.  UDC  users  plug  their 
hardware  into  a  HP  management 
rack  and  then  employ  server  and 
storage  virtualization  software  to 
automatically  assign  or  remove 
data  center  resources  to  applica¬ 
tions  when  needed. 

Automatically  configuring  a 
variety  of  hardware  and  applica¬ 
tions  in  this  fashion  has  proven 


Carolyn  Reuss,  director  of  prod¬ 
uct  management  at  Internet 
Security  Systems,  said  it  was  “ex¬ 
tremely  important”  to  her  that  ISS 
allowed  her  a  flexible  work 
schedule  in  order  to  juggle  work 
and  family.  “1  was  even  promoted 
while  on  maternity  leave,”  she 
added. “I  don’t  know  many  com¬ 
panies  that  would  do  that.” 


According  to  the  ITAA  study  on 
gender  and  race  in  IT  released  in 
May  the  IT  profession  is  mostly 
white  and  mostly  male. The  study 
titled  “Report  of  the  ITAA  Blue 
Ribbon  Panel  on  IT  Diversitj^’ 
offered  some  theories  on  why 
women  lag,  suggesting  mother¬ 
hood  is  one  of  them. 

Why  exactly  women  lag  in  IT 
—  they  earned  about  22%  of 
computer  science  and  engineer¬ 
ing  undergraduate  degrees  in 


difficult,  says  Paul  Mason,  vice 
president  of  infrastructure  at  IDC. 

“We’re  a  long  way  from  the 
point  where  we  can  consider 
this  to  be  something  turnkey 
where  you  can  plug  it  in  and  it 
works,”  he  says.  “It’s  just  too 
complicated.” 

Philips  Electronics’  semicon¬ 
ductor  division  is  an  early  HP 
UDC  customer,  having  consoli¬ 
dated  engineering,  office  appli¬ 
cation  and  manufacturing  data 
centers  onto  one  UDC  in  Nij¬ 
megen,  Holland. The  division  has 
managed  to  slash  its  IT  costs  by 
more  than  40%  since  it  began 
implementing  the  UDC  in  2001, 
says  Mathieu  Clerkx,  CIO  and 
senior  vice  president  for  supply 
chain  operations  at  Philips. 
(Read  more  about  utility  com¬ 
puting,  page  71.) 

HP  says  about  a  dozen  cus¬ 
tomers  use  its  UDC  technology. 

McMillan  is  a  correspondent 
with  the  IDG  News  Service's  San 
Francisco  bureau. 


2000  according  to  the  ITAA 
report  —  has  been  an  oft-debat¬ 
ed  topic  in  academia.  Professors 
at  institutions  that  include 
Carnegie  Mellon  and  Stanford 
University  have  churned  out  the¬ 
ories  for  years  on  why  more 
young  women  aren’t  drawn  to 
high  tech. 

“It’s  the  milieu  in  computer  sci- 

fclGuys  keep  score. 
They  like  stats.  So  If 
you  put  an  Idea  on  the 
table,  measure  It  Do 
it  In  numbers  or  they’ll 
just  blow  you  ofT.ii 

Peggy  Weigle 

CEO,  Sanctum 

ence  that  women  don’t  like  as 
much. They  see  the  human  inter¬ 
actions  in  other  departments  are 
more  exciting,” says  Eric  Roberts, 
professor  of  computer  science 
at  Stanford.  Computer  science 
is  seen  as  “male-dominated,” 
he  says. 

Tracy  Futhey  CIO  at  Duke 
University,  said  she  benefited 
during  her  computer  science 
studies  at  Carnegie  Mellon  from 
the  proactive  campaign  there  to 
get  women  involved  in  IT. 

Although  most  of  her  300-per- 
son  technical  staff  are  male, 
Futhey  said  including  women  in 
any  new  technology  initiative  is 
good  practice  so  as  to  fully 
understand  tjie  effect  on  the  end 
user. “It’s  important  to  get  all  the 
perspectives  around  the  table,” 
she  said. 

While  women’s  progress  in  IT 
might  be  slow,  life  does  look  a  lot 
brighter  than  it  did  25  years  ago, 
some  say  Kristina  Johnson,  dean 
of  Duke’s  Pratt  School  of  En¬ 
gineering,  described  a  scene  as 
an  18-year-old  student  at  Stan¬ 
ford  where  her  physics  professor 
asked  if  she  planned  to  “get  mar¬ 
ried  and  get  pregnant”  over  the 
next  decade.  He  said  that 
because  if  she  did,  he  didn’t 
want  her  in  his  physics  research 
program. 

“I  was  turned  off  by  physics,” 
she  said,  adding  that  the  turning 
point  came  when  mentors,  in¬ 
cluding  Stanford  electrical  engi¬ 
neering  professor  Joseph  Good¬ 
man,  inspired  her  at  the  start  of 
her  career.  “He  treated  men  and 
women  the  same.”H 
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Mercury  pushes  into  apps  mgmt. 


■  BY  DENISE  DUBIE 

Mercury  Interactive  last  week 
unveiled  a  handful  of  products 
designed  to  help  customers 
make  better  sense  of  how  appli¬ 
cations  use  infrastructure  re¬ 
sources  and  to  optimize  that 
infrastructure  to  support  the  most 
important  apps. 

The  company  announced 
about  a  dozen  products  and  up¬ 
grades  into  what  it  calls  Optimiza¬ 
tion  Centers:  IT  governance,  qual¬ 
ity,  performance  and  business 
availability  Best  known  for  its  test¬ 
ing  and  tuning  software  and  ser¬ 
vices,  Mercury  said  last  year  it 
would  expand  its  products  to 
manage  applications  and  com¬ 
pete  with  BMC  Software,  Com¬ 
puter  Associates,  HP  and  IBM. 

Among  the  announcements  last 
week  were: 

•  Capacity  Planning:  software  in 
the  performance  portfolio  that 
can  provide  “what-if”  analysis  on 
infrastructure  and  software.  The 
software  can  test  existing  network 
resources  against  the  resources  a 
new  application  requires, such  as 
bandwidth,  CPU  on  servers  and 
response  times  on  network 
devices.  The  collected  metrics 
would  help  network  managers 
make  better  investments  and 
determine  the  cost-effectiveness 
of  rolling  out  that  application. 
Mercury  says. 

•  Customer  Impact:  new  soft¬ 
ware  in  the  business  availabili¬ 
ty  group  that  can  determine  the 
effect  on  customers  when  infra¬ 
structure  or  application  perfor¬ 
mance  degrades.  The  software 
provides  visibility  into  the  avail¬ 
ability  of  applications  and 
systems. 

•  Performance  Tuning:  upgrad¬ 
ed  software  in  the  quality  cate¬ 
gory  that  includes  the  best  prac¬ 
tices  for  managing  PeopleSoft 
and  Siebel  Systems  applications. 

“Mercury  is  way  beyond  its  test¬ 
ing  beginnings  and  is  approach¬ 
ing  managing  applications  from  a 
higher  viewpoint  than  the  other 
guys,"  says  Glenn  O’Donnell,  a 
research  director  at  Meta  Group. 
“It  is  looking  at  applications  from 
a  service  perspective,  whereas  the 
big  guys  [BMC,CA,HP  and  IBM] 
started  out  in  infrastructure  man¬ 
agement  and  are  still  working  up 
the  stack” 

Several  of  the  company’s  new 
products  can  be  attributed  to  a 
summertime  buying  spree.  Mer¬ 
cury,  with  its  $22.5  million  pur¬ 
chase  of  Performant  in  May, 


picked  up  performance  testing 
and  tuning  technology  for  Java  2 
Platform  Enterprise  Edition  appli- 
cations.And  with  the  $225  million 
Mercury  put  down  for  Kintana, 
the  company  now  can  incorpo¬ 
rate  Kintana’s  business  service 
management  technology  into 
new  software  products  such  as 
Business  Process  Testing  and  To¬ 
paz  Service  Level  Management. 

The  former  will  let  business 
managers  participate  in  the  test¬ 
ing  of  new  applications  to  ensure 
the  business  requirements  are 
met,  and  the  latter  will  in  real  time 
track  infrastructure  and  applica¬ 
tion  performance  against  pre-set 
service-level  agreements,  the 
company  says. 

While  details  vary.  Mercury 
products  generally  use  server 


■  BY  PHIL  HOCHMUTH 

Cisco  last  week  introduced 
modules  for  its  Catalyst  6500 
enterprise  network  switch  that 
provide  IG  and  lOG  bit/sec  Ether¬ 
net  ports  and  new  quality-of-ser- 
vice  and  security  features. 

Among  the  new  modules  is  a 
blade  with  24  small  form-factor 
pluggable  Gigabit  Ethernet  ports, 
which  can  be  configured  for  cop¬ 
per  or  fiber  and  costs  $15,000. 

A  48-port  blade  also  now  is  av¬ 
ailable  that  supports  10/100/ 
lOOOM  bit/sec  Ethernet  on  each 
port  and  supports  Jumbo  Frames, 
which  allows  Ethernet  frames  as 
large  as  9K  bytes  (the  IEEE  stan¬ 
dard  is  1 .5K  bytes). Jumbo  Frames 
can  be  useful  for  moving  large 
blocks  of  data  over  a  LAN,  such  as 
for  network  backup.  Like  the  24- 
port  blade,  it  costs  $15,000. 

A  daughtercard,  priced  at 
$7,500,  will  be  available  next 
month  for  both  blades,  adding 
features  such  as  IPv4  and  IPv6 
traffic  forwarding,  QoS  and  secu¬ 
rity  policy  enforcement.  The  card 
lets  the  modules  handle  these 
functions  locally,  which  Cisco 
says  frees  up  a  Catalyst  6500’s  cen¬ 
tral  processing  module. 

Also  on  the  daughtercard  is  a 
“Call  Home”  Event  Notification 
feature,  which  lets  a  Catalyst  6500 
contact  network  staff  via  pager  or 
mobile  phone  in  the  event  of  a 


software  and  distributed  agents. 
Software  agents  are  distributed 
throughout  the  network  to  collect 
performance  and  availability 
data  from  operating  systems,  net¬ 
work  services,  applications  and 
end  users.  The  server  software 
houses  the  rules  engine,  which 
includes  predefined  settings  and 
fixes  for  specific  problems.  The 
software  comes  with  rules  and 
data  models  that  network  man¬ 
agers  can  accept  or  customize. 
'The  application  performance 
data  can  be  viewed  through  a 
Web-based  interface  that  lets  net¬ 
work  managers  track  specific 
metrics  based  on  customer,  ser¬ 
vice,  events  or  other  data. 

Virginia  Linick,vice  president  of 
IT  at  start-up  AutoOne  Insurance 
in  Melville,  N.J., says  she  saved  the 


system  failure  or  other  predeter¬ 
mined  network  trigger. 

Cisco  also  announced  optical 
ports  for  its  four-port  lOG  bit/sec 
Ethernet  modules,  which  were 
introduced  in  March  and  cost 
$20,000.  The  optical  inserts  let 
users  deploy  lOG  bit/sec  Ethernet 
over  multi-mode  fiber.  They  in¬ 
clude  850nm  lOGBase-SR  and 
ISlOnm  10GBase-LX4  inserts, 
which  cost  $3,000  and  $4,000,  res¬ 
pectively  Both  are  based  on  the 
XENPAK  design  standard  for  lOG 
bit/sec  Ethernet  modular  optics. 
The  lOGBase-SR  insert  can  be 
used  to  run  lOG  bit/sec  Ethernet 
over  multi-mode  fiber  up  to  200 
feet,  while  the  10GBase-LX4  can 
stretch  lOG  links  up  to  1,000  feet. 

Cisco  Catalyst  6500  switches 


company  about  10  months  of 
work  and  $500,000  in  getting  their 
new  operations  up  and  running. 
AutoOne  used  application  testing 
products  from  Mercury  —  and 
professional  services  for  a  speedy 
two-month  implementation  —  to 
get  about  30  Windows,  12  Sun 
Solaris  Unix  and  two  Linux 
servers  up  and  running  to  sup¬ 
port  about  600  end  users.  The  12 
Unix  servers  support  AutoOne’s 
core  insurance  system,  which 
Linick  says  would  have  to  have 
been  tested  manually  without 
help  from  Mercury 
“We  were  looking  to  minimize 
our  manual  testing  effort  and 
quickly  reload  and  mn  through 
new  tests  without  reconfiguring 
the  product.  In  start-up  mode,  time 
to  market  is  critical,”  she  says.M 


with  10  Gigabit  Ethernet  will  be 
going  into  the  new  Stata  Center  at 
MIT,  a  computer  science  and  arti¬ 
ficial  intelligence  research  lab 
that  will  open  in  next  year  in 
Cambridge,  Mass. 

More  than  40  Catalyst  6500s  will 
go  into  the  facility,  providing  10/ 

1 00/ 1 000  ports  to  users  at  the  LAN  I 
edge,  and  with  lOG  uplinks  to  the  | 
core.  Installing  network  pipes  this  ' 
fat  in  the  new  facility  was  an  easy 
decision,  says  Jack  Costanza,  di¬ 
rector  of  IT  for  Computer  Science 
and  Artificial  Intelligence  labora¬ 
tories  at  the  university 

“We  want  to  make  sure  that  i 
slow  network  plumbing  won’t  be 
the  thing  that  stops  people  from 
conducting  cutting-edge  re-  j 
search,”  he  says.  ■ 
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Cisco  Catalyst  6500  gets 
Gigabit  Ethernet  makeover 

Cisco's  new  Cig 

New  offerings  for  the  Catalyst  6500 
switch  include: 

•  A  24-pon  Gigabit  Ethernet  blade  that 
supports  copper  and  fiber. 

•  A  48-port  blade  with  10/100/1000M 
bit/sec  available  on  each  port. 

•  A  daughtercard  for  adding  IPv4  and 
IPv6  traffic  forwarding,  QoS  and 
security  policy  enforcement  on  the 
24-  and  48-port  blades. 

•  Optical  ports  for  previously  available 
four-port  10G  bit/sec  Ethernet  module. 


Shrinking  budgets.  More  applications.  Bigger  files 


BellSouth®  Metro  Ethernet  Service.  The  solution  to 


deliver  cost-effective,  more  reliable  and  robust  transport  for  your 
growing  network.  You  won't  need  new  equipment  or  training  and 
it's  scalable.  Whether  it's  Ethernet  (10  Mbps),  Fast  Ethernet 
(100  Mbps)  or  Gigabit  Ethernet  (1,000  Mbps),  you  can  mix  speeds 
according  to  location  and  application  requirements.  You'll 
increase  your  bandwidth  at  a  lower  overall  cost.  For  a  customized 
solution  from  someone  with  four  million  miles  of  fiber  experience, 
visit  www.bellsouth.com/business/metroethernet 


The  rewards  of  visiting  our  Web  site. 

FREE  INSTALLATION* 

with  contracts  greater  than  24  months  for 
new  BellSouth®  Metro  Ethernet  Service  customers. 

WWW. bellsouth.com/business/metroethernet 


@  BELLSOUTH 

Listening.  Answering." 


•Woivef  ct  al  tonifed  non  recurring  charges  excluding  jocks,  wiring  ond/or  special  assembly  installation  charges.  Oder  available  only  for  new  BellSouth  Metro  Ethernet  (NMU|  customers. 

Olfer  expires  October  31. 2003. 02003  BellSouth  Corporation.  All  trademorks  contained  herein  ore  the  properly  ol  BelSouth  Intellectual  Properly  Corporoboa 
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UnitedLinux  quietly  marches  on 


■  BY  JENNIFER  MEARS 

The  UnitedLinux  consortium  —  unveiled 
with  much  fanfare  last  year  as  a  unified 
effort  to  create  a  standard  Linux  distribu¬ 
tion  —  has  been  awfully  quiet  of  late  in  an 
industry  segment  that  has  been  anything 
but  quiet. 

That  has  market  watchers  questioning 
what  the  future  holds  for  the  group,  formed 
in  May  2002  by  Conectiva,  SuSE  Linux, 
Turbolinux  and  Caldera  (now  The  SCO 
Group).  Many  questions  have  centered  on 
the  $3  billion  copyright  infringement  suit 
that  SCO  filed  earlier  this  year  against  IBM 
and  SCO’s  subsequent  legal  pursuit  of  all 
Linux  distributions  and  even  Linux  users. 

What’s  more,  SCO  executives  in  May  said 
the  company  was  suspending  activities 
with  UnitedLinux  (although  a  member  of 
the  consortium  says  SCO  continues  to  par¬ 
ticipate  in  UnitedLinux  meetings). 

“1  think  UnitedLinux  is  being  very  quiet 
right  now,  waiting  for  the  issue  between 
See  UnitedLinux,  page  24 


■  Aruba  Wireless  Networks  has 


secured  $20  million  in  additional  ven¬ 
ture  funding,  bringing  to  $29.5  million 
the  total  raised  by  the  year-and-a-half- 
old  wireless  LAN  switch  maker.  The 
company  also  named  Dominic  Orr, 
former  head  of  Alteon  WebSystems, 
as  its  executive  chairman  and  named 
a  CFO  and  vice  president  of  worldwide 
sales  and  channel  operations. 

■  Advanced  Digital  information 
Corp.  last  week  announced  an  inte¬ 
grated  disk-to-tape  appliance  that  lets 
users  determine  how  they  will  back  up 
and  archive  data.  The  PathlightVX  is  a 
combination  disk-  and  tape- based 
array  that  uses  Advanced  Technology 
Attachment  drives  and  LT01  or  LT02 
tape  technology.  Back-up  software 
sees  the  device  as  a  single  tape 
library.  The  PathlightVX  has  as  much 
as  40  terabytes  of  storage  capacity 
and  fits  in  a  standard  19-inch  rack. 

The  company  plans  to  ship  it  next 
month  starting  at  $190,000. 


Linux,  unite 

It  has  been  relatively  quiet  on  the  UnitedLinux  consortium  front  of  late,  but  members  say  that’s  because  most  of 
their  work  is  done.  Here’s  a  iook  at  the  group’s  evolution. 


UNITEDLINUX 

-  May 

Caldera  (now  SCO),  Con¬ 
ectiva,  SuSE  andTurbolinux 
announce  the  formation  of 
UnitedLinux  to  create  a 
standard,  business-focused 
Linux  distribution. 


[2002 

July - 

Group  says  that  its 
upcoming  distribution  will 
support  Itanium  2. 

A  closed  beta  is  announced 
for  members’  partners  only. 


September 

Paula  Hunter,  a  founding  officer  and 
chairman  of  the  Application  Service 
Provider  Industry  Consortium,  is 
named  UnitedLinux's  general  manager. 


UnitedLinux  announces  an  open  beta 
of  its  Linux  distribution,  and  more 
than  15,000  copies  are  downloaded 
within  a  month. 


2003 


November - 

HP  and  IBM  sponsor  an 
event  at  Comdex  to 
announce  the 
release  of 
UnitedLinux  1.0. 


_..ERPR(SIJ 
I  SERVER  4 


January 

IBM  and  AMD  join  as 
the  first  technology 
partners  of  United¬ 
Linux;  HP  Joins  later 
in  the  month. 
Separately,  the  group 
announces  a  carrier- 
grade  service  pack 
for  UnitedLinux  1.0. 

-I  ..  -  ..L . -1 

March - 

Oracle  extends  its 
Unbreakable  Linux 
technology  to 
UnitedLinux. 

SuSE  ships 
UnitedLinux-based 
SuSE  Enterprise 
Servers  with  support 
for  Itanium  2. 


—  April 

SCO  ships  UnitedLinux-based 
SCO  Linux  Server  4.0  with 
support  for  Itanium  2. 

UnitedLinux  1.0  supports  systems 
based  on  AMD's  Opteron  chip. 

^  I  I  I  I 

May-^ 

After  calling 
UnitedLinux  an 
important  alternative 
to  Red  Hat  when  the 
group  was  formed, 

SCO  CEO  Dari  McBride 
McBride  oversees  a  move  by  his 
company  to  suspend  activities  with 
the  consortium  and  halt  SCO’s  Linux 
distribution. 


IP  videoconferencing  winning  converts 


■  BY  LINDA  LEUNG 

According  to  an  informal  survey  of  161 
out  of  500  attendees  at  the  Polycom  User 
Group  show  earlier  this  month,  nearly  half 
said  their  organizations  use  IP  technology 
for  videoconferencing. 

Chris  DiFiglia,  PUG  president  and  global 
video  operations  manager  at  Bear  Stearns, 
says  there  has  been  an  increased  level  of 
interest  over  the  past  year  in  IP  conferenc¬ 
ing  among  PUG  members  looking  to 
upgrade  from  traditional  ISDN-based 
videoconferencing.  He  estimates  that  at 
least  half  of  new  videoconferencing  roll¬ 
outs  are  for  IP-based  systems,  a  figure  he 
says  was  probably  less  than  30%  a  year  ago. 

IP  conferencing  lets  users  offer  real-time, 
multimedia  voice,  video  and  data  confer¬ 
encing  over  their  existing  IP  networks, 
instead  of  having  to  lease  and  manage  a 
dedicated  ISDN  network  to  do  the  job. 
According  to  a  Wainhouse  Research  white 
paper,  IP  conferencing  is  more  reliable 
than  the  typical  386K  bit/sec  ISDN  video- 
conferencing  call,  which  is  dependent  on 
six  data  channels  working  simultaneously. 


each  of  which  carriers  charge  for  on  a  per- 
minute  basis. 

DiFiglia  adds:  “IP  is  a  much  more  fault- 
tolerant  network.  With  ISDN,  if  there’s  a 
dropped  frame  or  picture,  the  entire  call  is 
dropped.  An  IP  world  is  more  forgiving.The 
worst  that  would  happen  is  that  the  video 
frame  would  freeze  for  a  second.” 

According  to  Wainhouse,  IP  networks  typ¬ 
ically  offer  at  least  lOM  bit/sec  bandwidth 
to  each  video  system,  which  means  a  stan¬ 
dard  IP  video  call  might  be  placed  at 
speeds  of  512K  bit/sec,  resulting  in  better 
audio  and  video  quality  Also,  IP  videocon¬ 
ferencing  systems  can  be  less  expensive 
than  ISDN-based  systems  because  they  do 
not  need  special  ISDN-interface  equip¬ 
ment  and  software.  Companies  can  use 
common  PCs  as  the  basic  processing 
engine  for  IP  conferencing. 

Polycom  has  offered  IP  videoconferenc¬ 
ing  since  1996  through  its  VlewStation  line 
of  group  videoconferencing  appliances. 
Wainhouse  says  Polycom’s  share  of  the 
group  videoconferencing  market  in  the 
second  quarter  was  51%,  followed  by 
archrival  Tand berg  with  21%. 


Polycom  says  its  base  of  videoconferenc¬ 
ing  equipment  users  is  split  5050  between 
ISDN  and  iPand  that  70%  of  new  inquiries 
are  for  IP-based  gear. 

Goldman  Sachs,  a  Polycom  customer,  is 
planning  an  evaluation  of  IP  conferencing 
in  the  fourth  quarter.  If  all  goes  well,  the 
investment  firm  plans  to  roll  out  the  tech¬ 
nology  next  year  at  its  six-building  campus 
in  New  York  followed  by  offices  in  London 
and  Asia,  with  main  deployment  targeted 
for  2005  and  2006. 

“A  move  to  IP  would  give  us  productivity 
gains.  We’d  be  able  to  reach  decisions  faster 
and  improve  communications,”  says  Leo 
Brito,  vice  president  of  multimedia  tech¬ 
nology  and  services  at  Goldman  Sachs. 

Bear  Stearns  has  used  IP  conferencing  in 
its  New  York  world  headquarters  for  more 
than  two  years.  Its  national  and  interna¬ 
tional  branch  offices  use  a  private  ATM/ 
frame  relay-based  network,  but  DiFiglia 
says  they  will  be  upgraded  to  IP  when  tfieir 
existing  network  equipment  needs  to  be 
replaced. The  IP  and  ATM/frame  relay  net¬ 
works  are  connected  to  a  bridge,  which  lets 
the  different  systems  communicate.  ■ 
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After  worm.s,spam  is  easily  the  bane  of 
existence  for  an  increasing  number  of 
users  —  corporate  and  home  alike.  It 
is  more  than  a  full-time  job  to  keep  track  of 
all  the  new  spammer  tricks. 

Devising  tests  to  probe  anti-spam  behav¬ 
ior  is  a  daunting  task  —  but  that  doesn’t 
mean  we  shouldn’t  try. 

At  first  blush,  it  seems  like  a  hopeless 
endeavor.  After  all,  with  spammers  expend¬ 
ing  significant  effort  to  find  ways  around 
whatever  barriers  are  put  in  place,  by  the 
time  one  test  is  developed  there  are  sure  to 
be  new  methods  of  spamming  out  “in  the 
wild.”  Some  say  that  because  testing  can 
never  hope  to  mirror  reality,  no  useful  tests 
can  be  developed.  1  disagree. 


Testing  anti-spam  products  can  be  done 


We  can  apply  concepts  developed  to  test 
less-amorphous  things  —  LAN  switches  for 
example  —  to  provide  a  basis  for  useful 
evaluation  of  anti-spam.  For  starters,  one 
could  dismiss  the  last  decade  or  so  of 
switch/router  testing  for  the  “it-does-not- 
reflect-reality”  reasons  stated  previously 
Indeed,  while  we  test  these  devices,  usually 
with  streams  of  same-size  packets,  nobody 
contends  that  this  is  how  networks  work  in 
the  wild. 

We  do  it  for  two  fundamental  reasons. 
First  and  foremost,  such  testing  provides  a 
way  to  get  direct  points  of  comparison 
across  products.  While  one  could  argue 
that  comparing  the  results  of  tests  that  are 
“illogical”  (that  is,  not  real-world)  is  illogi¬ 
cal,  that  is  not  the  case.  At  its  simplest,  a  test 
can  show  the  raw  processing  capabilities 
of  multiple  devices  —  an  important  ele¬ 
ment.  More  importantly  the  results  can  give 
key  insights  into  the  underlying  architec¬ 
ture  of  the  product  and  thus  how  it  is  likely 
to  behave  in  the  wild. 


And  this  is  where  we  can  get  the  benefit 
with  testing  anti-spam  solutions.  With 
countless  companies  and  countless  under¬ 
lying  architectures  and  implementations,  it 
becomes  difficult  to  judge  products  on 
their  own  merits.  By  devising  structured 
tests  and  applying  them  across  products/ 
services,  key  elements  can  be  exposed. 

We’ve  done  just  this.  For  several  reports 
that  will  be  released  soon,  we  devised  a  set 
of  tests  that  exercised  anti-spam  prod¬ 
ucts/services  —  and  produced  some  inter¬ 
esting  results. 

Given  the  variety  of  spam  that  any  prod¬ 
uct  will  have  to  handle,  coupled  with  the 
various  addressing  attributes  used  by 
spammers,  we  knew  that  we’d  be  looking  at 
using  thousands  of  test  messages.  While 
logistically  challenging,  it  does  provide  the 
benefit  of  delivering  thousands  of  data 
points  and  thus  more  reliable  results. 

We  started  by  “collecting”  some  thou¬ 
sands  of  examples  of  actual  spam,  loading 
them  into  a  database  and  classifying  them 


into  categories  based  on  the  content. 
Among  these  we  built  a  category  of  “be¬ 
nign”  messages.  These  were  real  messages 
that  should  get  through  and  not  get 
snagged  by  the  anti-spam  product.Then  we 
used  a  custom  “spam-generator”  program 
that  we  built  to  send  these  messages  to  the 
system  under  test  using  both  original  and 
“faked”  FROM  addresses  and  variations  on 
TO,  CC  and  BCC  fields. 

With  this  fundamental  test,  we  saw  signif¬ 
icant  differences  in  behavior.  We  even  saw 
anti-spam  offerings  that,  inexplicably  didn’t 
filter  out  messages  that  had  “ADV”  (adver¬ 
tising  flag)  in  the  subject  line.  As  expected 
we  gained  insights  into  the  underlying 
product  architectures  —  and  performance 
—  and  proved  to  our  satisfaction  that  test¬ 
ing  spam  is  not  a  futile  endeavor. 

Tolly  is  president  of  The  Tolly  Group,  a 
strategic  consulting  and  independent  testing 
company  in  Manasquan,  N.J.  He  can  be 
reached  at  ktolly@tolly.com. 


UnitedLinux 

continued  from  page  21 

IBM  and  The  SCO  Group  to  be  settled,” says 
Dan  Kusnetzky  vice  president  of  system 
software  at  IDC.“My  sense  is  since  the  dis¬ 
cussion  of  UnitedLinux  has  a  tendency  to 
bring  up  The  SCO  Group  and  all  of  the 
issues  that  The  SCO  Group  has  brought  for¬ 
ward,  the  individual  members  of  the  group 
have  spoken  less  and  less  about  United¬ 
Linux.  Although,  behind  the  scenes  they 
appear  to  be  working  together/ 

Joseph  Eckert,  a  spokesman  for  SuSE, 
which  did  the  bulk  of  the  engineering  work 
for  the  UnitedLinux  distribution,  says  tech¬ 
nical  projects  continue, although  the  major¬ 
ity  of  work  has  been  completed.  As  a  result, 
he  says  SCO’s  distancing  itself  from 
UnitedLinux  is  having  little  impact. 

“Really,  the  UnitedLinux  activities  were 
sort  of  being  curtailed  anyway/’ he  says,  not¬ 
ing  that  a  standardized  Linux  platform, 
UnitedLinux  1.0,  was  rolled  out  at  Comdex 
last  November,  and  certifications  and  part¬ 
ner  support  from  vendors  such  as  HR  IBM 
and  Oracle  followed. 

“Now  essentially  the  role  of  UnitedLinux 
is  to  continue  to  support  the  maintenance 
of  [UnitedLinux  1.0),  which  is  what  we’re 
doing,  and  to  make  sure  certifications  are 
up  to  date,”  Eckert  says.“Most  of  those  certi¬ 
fications  and  technology  Lssues  were  han¬ 
dled  by  SuSE,  anyway.  That's  the  way  the 
partnership  was  built." 

WJien  asked  whether  UnitedLinux  ulti¬ 
mately  would  be  dissolved, Eckert  said  only 
th.it  it  was“preniature  to  speculate  on  that.” 

Jlie  next  product  cycle  probably  brings 
i:^  into  the  middle  of  next  yearand  we  have 
until  tfien  to  det  ide  what’s  going  to  happen 
Vi  hi  UnitedUnux,"hesays. 

rokert  say’s  regardless  of  UnitedlJnux’s 
futui- .  SuSE  would  evolve  the  UnitedLinux 
platform  ■  ustomers  appear  unfazed. 

“As  long  as  there  is  SuSE,  we’ll  be  fine," 


says  Joe  Poole,  technical  director  at 
Boscov’s  Department  Stores  in  Reading,  Pa. 

Boscov’s  uses  SuSE  Enterprise  Server  8  in 
some  instances  and  plans  to  move  its  z900 
mainframe  to  the  UnitedLinux-powered 
platform  when  it  upgrades  its  WebSphere 
Commerce  deployment  later  this  year. 
Fbole  says  the  idea  behind  UnitedLinux  is 
a  good  one. 

“The  architecture  of  the  distributions 
today  does  not  have  to  be  the  same,  which 
can  be  confusing  when  multiple  distribu¬ 
tions  are  used  in  a  single  shop.  It’s  also  a 
nightmare  for  developers  who  would  like 
to  have  their  software  install  without  a 
problem  on  any  Linux  system,”  he  says. “If 
you  have  a  version  of  UnitedLinux,  most 
open  source  programs  and  commercial 
software  should  install  with  ease.” 

Fbole  says  he  hopes  UnitedLinux  will  let 
the  Linux  community  “avoid  the  trap  that 
befell  Unix.” 

“Every  company  had  its  own  version  [of 
Unix],  and  porting  from  one  platform  to 
another  was  a  headache,”  he  says.“The  only 
question  left  regards  Red  Hat  and  what  it 
intends  to  do.” 

The  possibility  of  Red  Hat  joining 
UnitedLinux  appears  remote.  Red  Hat 
snubbed  its  nose  at  UnitedLinux  when 
it  was  invited  to  join  the  consortium  last 
year,  and  Gartner  analysts  doubted  that 
the  consortium  would  have  any  impact 
on  the  more  than  50%  market  share 
that  they  expect  Red  Hat  to  retain 
through  2005. 

Indeed,  Red  Hat  continues  to  dominate 
the  market  and  just  last  week  introduced 
its  open  source  architecture,  which  ex¬ 
pands  Red  Hat’s  business  beyond  the 
operating  system  to  include  infrastructure 
software,  such  as  application  servers  and 
systems  management. 

Wliile  some  analysts  say  the  underlying 
premise  of  UnitedLinux  —  that  small  ven¬ 
dors  banding  together  can  save  money  by 


combining  efforts  to  create  a  technically 
sophisticated  platform  —  remains  sound, 
others  say  the  future  of  the  group  will  have 
little  effect  on  the  Linux  market  in  general. 

“To  be  very  honest,  UnitedLinux  wasn’t 
having  much  impact,  anywa>/’  says  Bill 


Claybrook,  an  analyst  at  Aberdeen  Group. 
“It  needed  to  be  bigger,  and  it  needed  to 
be  more  dynamically  managed  and  run. 
I’m  not  saying  it  didn’t  accomplish  any¬ 
thing,  but  what  it  accomplished  was  much 
less  than  what  it  set  out  to  do.”H 


In  a  move  to  extend  its  business  beyond  the  Linux  operating  system,  Red  Hat 
last  week  announced  plans  to  deliver  open  source  application  server,  cluster¬ 
ing  and  systems  management  software. 

The  first  part  of  the  initiative  is  Red  Hat  Enterprise  Linux  3,  due  out  in  October. 

The  operating  system  will  offer  hooks  to  the  other  software,  which  yvill  be  delivered 
as  additional  subscriptions,  Hardware  support  in  the  operating  system  has  been 
expanded  from  Intel  platforms  to  include  IBM's  zSeries  mainframes  and  iSeries  and 
pSeries  PowerPC-based  servers,  as  well  as  systems  based  on  Advanced  Micro 
Devices’  64-bit  Opteron  processor. 

Red  Hat's  aim  is  to  set  a  direction  for  the  open  source  community  to  develop 
enterprise  infrastructure  components  that  it  will  then  take  and  integrate  with  Red 
Hat  Enterprise  Linux.  “Many  of  the  issues  with  Linux  in  the  enterprise  have  been  the 
lack  of  interoperability  among  components,"  says  Brian  Stevens,  vice  president  of 
operating  system  development  at  Red  Hat.  “We  hope  the  same  momentum  behind 
the  Linux  community  will  drive  the  applications  market." 

Today,  enterprise  Linux  users  who  want  application  server,  clustering  or  manage¬ 
ment  software  typically  look  to  proprietary  products  from  vendors  such  as  Veritas, 
BEA  Systems  or  IBM. The  Red  Hat  products  will  compete  with  those  but  aren’t 
identical,  says  Paul  Cormier,  executive  vice  president  of  engineering.  “Cbviously  the 
open  source  application  server  does  not  have  the  same  features  as  a  BEA  or  IBM 
application  server,"  he  says.  “We  are  here  to  give  customers  the  opportunity  to  have 
a  complete  open  source  solution.  The  strategy  for  us  here  is  offering  choice.” 

About  three  months  after  the  Enterprise  Linux  3  release,  Red  Hat  plans  to  deliver 
clustering  as  the  first  add-on.  The  plan  is  to  offer  16-node  clustering  for  load  balanc¬ 
ing,  fail-over  and  storage  management,  Stevens  said.  Within  three  months  after  that, 
Red  Hat  plans  to  offer  a  Java  2  Platform  Enterprise  Edition  application  server. 

This  product  will  be  based  on  Java  Cpen  Application  Server,  from  European  mid¬ 
dleware  consortium  CbjectWeb.  Systems  management  software  that  allows  provi¬ 
sioning,  upgrading  and  monitoring  of  servers  is  due  out  in  the  same  time  frame  as 
the  application  server.  Pricing  for  the  new  offerings  has  yet  to  be  determined. 

—  Joris  Evers,  IDG  News  Service 
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Only  Avocent  gives  you  complete  Click  and  Connect"^ 
control  of  your  data  center  —  all  from  a  single  screen 


Download  your 
FREE 

KVM  Tech  Guide  today! 

Don't  choose  a 
KVM  switching  system 
without  it! 

www.avocent.com/reality 


Now  you  can  see  what’s  really  happening  in  your  data  center.  Avocent’s  DS  Series  lets 
you  access,  maintain  and  troubleshoot  all  your  servers  and  serial  devices  over  IP  -  no 
matter  where  you  are,  even  over  a  browser.  Authenticate  once  and  control  it  all. 

Get  real,  get  the  best  KVM  OVER  IP  solution  available  today.  The  Avocent  DS  Series. 


Avocenb. 

The  Power  of  Being  There. 
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Pershing  gets  arms  around  online  apps 


Pershing  has  been  around  since  the  1930s  and 
runs  one  of  the  biggest  financial  clearing  busi¬ 
nesses  in  the  U.S.,  but  the  company  is  little  known 
to  many  people  because  it  does  so  much  of  its 
work  behind  the  scenes.  Sold  by 
Credit  Suisse  Group  to  Bank  of 
New  York  for  $2. 1  billion  earlier 
this  year,  Pershing  relies  heavily 
on  its  network  to  conduct  much 
of  its  business,  which  involves 
supplying  about  250  applications  and  services  to 
more  than  1,300  customers.  Ramaswamy 
Nagappan, Pershing’s  managing  director  ofe-ser- 
vices,  spoke  recently  with  Network  World  Senior 
Writer  Denise  Dubie  about  the  challenges  of  mn- 
ning  such  a  huge  online  applications  system. 

Tell  me  about  your  network. 

Our  infrastructure  is  very  widespread,  from  main¬ 
frames  to  Unix  to  NT  [servers  —  of  which  there  are 
about  500]. We’re  distributed  across  all  the  major  ven¬ 
dors  [on  the  software  side,  including  Oracle  and 
Sybase]  .The  internal  network  is  all  Ethernet,  and  we 
have  a  Gig  backbone.  From  a  customer  point  of  view, 
we  have  ATM,  frame  relay T-1  and  point-to-point.  We 
run  Internet-based  VPNs.  We  also  have  dark  fiber  and 
OC-3  [155M  bit/sec  links].  Primarily  we  have  three 
data  centers. 


What  do  you  do  day  to  day? 

1  am  responsible  for  the  development  of  applica¬ 
tions  and  distribution  of  them.These  include  broker¬ 
age  trading,  account  information,  market  data,  news 
and  other  research  information  and  content.The 

modes  of  access  can  be  through  a 
standard  Web  browser,  telephone 
(voice  recognition),  wireless  or 
through  a  native  Windows  applica¬ 
tion.  Knowing  the  end-user  experi¬ 
ence  is  a  key  in  delivering  applica¬ 
tions  over  the  network.The  applications  need  to  be 
instrumented  and  integrated  well  into  our  enterprise 
monitoring  and  operations  framework.This  way  we 
are  alerted  to  problems  before  the  customer  calls  to 
report  them. 

So  what’s  your  secret  for  keeping  these  applications  up 
and  running? 

The  primary  thing  we  do  is  make  sure  we  have  dual 
data  centers  [while  Ffershing  has  three  data  centers, 
two  are  redundant] ,  and  both  are  hot  sites.  As  for  the 
applications,  all  the  functions  are  running  at  both  loca¬ 
tions.  It  resembles  a  disaster  recovery  kind  of  situation. 
Even  our  development  staff  is  in  multiple  locations. 

Our  software  architecture  and  hardware  infrastruc¬ 
ture  play  a  key  role  here. The  software  architecture 
incorporates  features  that  support  easy  distribution 
of  request  processing  to  redundant  software  and 
hardware  components;  the  hardware  and  network 

See  Pershing,  page  28 


Vendors  diversify  content  mgmt.  tools 


■  Symantec  is  adding  virus  and 
worm  reporting  to  the  threat  informa¬ 
tion  that  the  security  company 
already  collects  through  its  Deep- 
Sight  Threat  Management  Sys¬ 
tem  service.  The  offering  already  fea¬ 
tures  intrusion-detection  alerts  and 
firewall-related  data,  gleaned  from 
20,000  partners  around  the  globe. 
DeepSight  5.0  starts  at  $15,000  per 
year  for  research  reports  containing 
the  aggregate  security-event  data. 

■  RSA  Security  has  upgraded  its 
ClearTrust  server  software  for  pol¬ 
icy-based  access  to  Web  applications, 
adding  support  for  Security  Asser¬ 
tions  Markup  Language  1.1  and  ident¬ 
ity-management  features  licensed 
from  Thor  Technologies. 


■  BY  ANN  BEDNARZ 

This  summer,  content  management  ven¬ 
dors  staged  a  slew  of  acquisitions  and 
application  overhauls  as  they  sought  to 
attract  companies  that  need  help  manag¬ 
ing  multiple  information  sources. 

The  latest  vendor  to  fine-tune  its  soft¬ 
ware  is  Stellent,  which  last  week  released 
a  new  version  of  its  content  management 
suite,  rebuilt  to  provide  a  common  plat¬ 
form  for  its  multiple  application  modules. 

The  vendor  released  Stellent  Content 
Management  7.0,  which  offers  a  common 
user  interface  and  a  single  server  and 
repository  architecture  for  Stellent’s  five 
content-management  application  mod¬ 
ules:  document  management,Web  content 
management,  collaboration,  records  man¬ 
agement  and  digital  asset  management. 

Version  7.0  also  includes  new  built-in 
records  management  capabilities  and 
enhanced  document  management,  work- 
flow  and  imaging  functionality  Typical 


enterprise  implementations  cost  $50,000 
to  $200,000;  individual  application  mod¬ 
ules  start  at  $25,000. 

Analysts  say  an  integrated  content  man¬ 
agement  platform  is  critical  for  compa¬ 
nies  that  need  to  manage  diverse  content 
types.  Content  management  is  changing 
from  a  stand-alone  application  into  an 
infrastructure  that  needs  to  be  tied  to 
other  key  enterprise  applications,  accord¬ 
ing  to  Gartner.  Some  of  those  ancillary 
applications  include  portals  and  collabo¬ 
ration  tools. 

Customers  are  buying  into  the  idea,  ana¬ 
lysts  say.  In  a  survey  of  877  technology 
buyers,  Forrester  Research  found  that  32% 
of  North  American  firms  plan  to  buy  con¬ 
tent  management  technologies  this  year. 

For  their  part,  content  vendors  have 
worked  to  diversify  their  product  lines, 
often  through  acquisition. 

Earlier  this  month,  content-management 
vendor  Vignette  announced  plans  to 
acquire  Intraspect  Software  for  $20  mil¬ 


lion.  The  buy  will  add  collaboration  soft¬ 
ware  to  Vignette’s  arsenal.  Interwoven  also 
is  looking  to  add  collaboration  technol¬ 
ogy  to  its  offerings  by  merging  with 
iManage  in  a  $171  million  deal  an¬ 
nounced  last  month. 

The  search  for  integrated  digital-asset 
management  (DAM)  features  —  for  han¬ 
dling  volumes  of  rich-media  content  such 
as  images,  audio  and  video  —  fueled  two 
more  recent  acquisitions.  In  August, 
Stellent  acquired  the  assets  of  DAM  spe¬ 
cialist  Ancept  for  $2  million  and  100,000 
Stellent  shares,  and  in  June  Interwoven 
bought  MediaBin  for  an  undisclosed 
amount. 

Also  this  summer.  Open  Text  announced 
plans  to  purchase  German  content  man¬ 
agement  company  Gauss  Interprise  for 
$11  million  in  stock.  From  Gauss,  Open 
Text  will  gain  Web  content  management, 
archiving  and  workflow. To  fill  its  Web  con¬ 
tent  gap,  IBM  in  July  bought  out  Web  con¬ 
tent  management  specialist  Aptrix.  ■ 
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Priorities:  Greed  before  a  functioning  Internet 

istries  —  changed  the  data  in  its  database  when  there  is  a  problem  with  the  domain  that  affected  so  much  of  the  Internet  could 

so  that  whenever  anyone  looks  up  a  do-  name. VeriSign  only  tried  to  deal  with  Web  be  installed  without  any  sort  of  advance 

main  name  that  did  not  exist, the  IP  address  and  e-mail  traffic,  and  it  dealt  with  e-mail  in  discussion.  VeriSign  did  it  because  it  could 
of  a  VeriSign  server  was  returned  instead  of  a  way  that  broke  a  number  of  systems  that  —  it  controls  the  databases.  Apparently  the 
the  server  responding  that  the  domain  did  try  to  eliminate  spam.  All  other  applica-  question  of  whether  the  company  should 

not  exist.  VeriSign  explained  what  it  was  tions  now  mysteriously  will  fail  with  no  do  it  never  entered  the  minds  of  its  offi- 

M 


y  hope  and  hopeful  expectation  is 
that  by  the  time  this  column  gets 
published  common  sense  or  the 
voice  of  authority  will  have  won  out  over 
greed,  and  VeriSign  will  have  stopped 
hijacking  .com  and  .net.  Even  if  my  hopes 
are  fulfilled,  this  episode  has  been  an 
important  lesson  on  the  requirement  to  not 
trust  the  well  being  of  the  Internet  to  peo¬ 
ple  who  so  easily  put  their  greed  in  front  of 
all  other  considerations. 

I’ll  give  a  bit  of  background  for  those  of 
you  who  have  been  too  busy  following  the 
California  recall-election  debacle  to  pay 
attention  to  what’s  going  on  with  the 
Internet.  On  Sept.  15,VeriSign  —  the  opera¬ 
tor  of  the  .com  and  .net  domain  name  reg- 


doing  in  a  white  paper  (see  www.nwfu- 
sion.com,  DocFinder:  7828). 

To  someone  using  a  Web  browser,  the 
result  of  the  changes  VeriSign  made  might 
not  be  all  that  obvious.  If  you  mistype  a 
URL,  you  get  a  VeriSign  Web  page  that  lets 
you  search  for  the  site  you  were  trying  to 
reach.  This  is  about  the  same  thing  that 
users  of  some  browsers  were  already  get¬ 
ting  when  they  mistyped  a  URL,  the  differ¬ 
ence  being  that  the  Web  page  is  now  a 
VeriSign  one  rather  than  one  selected  by 
the  browser  company 

But  the  Internet  is  more  than  just  the  Web. 
There  are  thousands  of  applications  that 
also  use  the  Internet  with  more  or  less  user 
interaction.  Now  all  of  these  applications 
will  get  redirected  to  the  VeriSign  server 


notice  to  the  users. 

VeriSign’s  change  set  off  a  firestorm  in 
Internet  techie  circles.  There  were  more 
than  500  messages  to  the  nanog  list 
(DocFinder:  7829)  on  the  topic  in  less  than 
a  week  —  almost  all  of  which  expressed 
strong  views  against  VeriSign’s  actions. 

Later  in  the  week,  the  internet  Engin¬ 
eering  Task  Force’s  Internet  Architecture 
Board  and  the  Internet  Corporation  for 
Assigned  Names  and  Numbers  (the  folk 
who  are  supposed  to  be  overseeing  the 
domain  name  system)  weighed  in  with 
their  views,  also  negative  (See  DocFinders: 
7830  and  7831).  Software  updates  already 
are  being  distributed  to  counteract  Veri¬ 
Sign’s  changes. 

One  can  reasonably  ask  how  a  change 


cials.VeriSign  felt  it  knew  what  was  best  for 
VeriSign  —  it  has  said  that  it  hopes  to  make 
money  redirecting  the  typos. What  was  best 
for  the  Internet  was  apparently  irrelevant. 

But  one  big  lesson  that  must  be  learned 
from  this  episode  is  that  organizations  or 
people  in  positions  of  responsibility  in  the 
Internet  infrastructure  must  be  worthy  of 
our  trust.  We  now  have  a  case  study  of  what 
happens  when  this  is  not  the  case. 

Disclaimer:  Arrogance  is  not  a  stranger  at 
Harvard  but,  even  at  Harvard,  VeriSign 
would  stand  out.That  said,  the  above  is  my 
own  arrogant(?)  view. 

Bradner  is  a  consultant  with  Howard 
University’s  Information  Systems.  He  can  be 
reached  at  sob@sobco.com. 


Pershing 

continued  from  page  27 

infrastructure  in  turn  supports  this  distribution  and  repli¬ 
cation  strategy  across  and  between  data  centers.  It  is  still 
critical  that  applications  are  designed  according  to  their 
usage  patterns  and  that  key  architectural  support  is  there 
to  meet  our  performance  requirements,  for  example 
caching  and  load  balancing. 

Do  you  throw  bandwidth  at  your  applications  or  lean  more 
toward  quality-of-service  techniques? 

We  maintain  a  safe  and  conservative  amount  of  free 
capacity,  which  is  monitored  continuously  Bandwidth  is 
increased  to  achieve  this  margin. We  use  network  QoS 
technology  at  the  physical  switching  level  to  prioritize 
online  processing  traffic  over  automated  data  movements 
like  FTP  We  do  not  provide  QoS  at  the  application  level  at 
this  time,  and  we  have  the  ability  in  our  architecture  to 
apply  routing  constraints  to  software  messages. 

How  closely  does  the  application  development  staff  work  with 
the  network  group? 

Wlien  we  started  years  ago,  the  team  was  smaller  and  the 
culture  brewed  in  such  a  way  that  the  application  devel¬ 
opment  team  always  worked  closely  with  the  network 
people.  In  temis  of  our  e-commerce  delivery,  if  you  look  at 
external  monitoring  companies  such  as  Keynote  and 
Gomez  and  their  measurements,  we  are  the  top  in  perfor¬ 
mance.  The  only  reason  that  happened  is  because  the 
developers  work  with  the  network  very  closely  We  have 
gone  to  the  extent  of  building  routing  agents  that  know 
which  applications  and  which  machines  are  running 
faster  and  feeding  intelligence  about  which  application  or 
machine  it  should  be  load  balancing  to  the  Cisco  distribu¬ 
tor  de\ice.  Even  now  we  are  working  with  the  network 
team  to  figure  out  [QoS]-based  routing.  Both  groups  try  to 
leverage  existing  infrastructure  to  get  the  economies  of 
scale.  In  some  cases,  the  network  infrastructure  must  be 
modified  to  allow  for  the  new  functionality/connectivity 
We  now  offer  streaming  content  over  our  network. 

What’s  your  Web  services  strategy? 

Web  services  form  the  essence  of  our  cu.stomer  integra¬ 
tion  strategy.  We  are  migrating  existing  proprietary  inter¬ 
faces  to  o[)en  standards  such  as  [Simple  Object  Access 


Protocol]  and  HTTP  This  includes  a  diverse  range  of 
integration  requirements,  from  document  delivery  to 
request-response  interactions  and  alert  notifications. 


levels.  We  try  to  get  independent  certification  people  to 
come  in  and  certify  us  often. We  have  a  dedicated  team, 
starting  with  intrusion  detection  all  the  way  up  to  applica¬ 
tion  security 


What's  your  take  on  utility  computing? 

The  vendors  are  a  little  bit  late  in  terms  of  the  applica¬ 
tion  integration  with  infrastructure  and  management.We 
end  up  writing  all  the  application  instrumentation  and 
linking  it  to  tools  such  as  QpenWew,  Smarts  and  Netcool. 
For  example,  with  the  idea  of  multiple  data  center  imple¬ 
mentations,  a  lot  of  customized  work  needs  to  be  done.  If 
you  have  the  same  application  and  you  decided  to  run  it 
on  two  different  data  centers  and  then  let  it  load  balance, 
there  is  nothing  out  of  the  box  to  do  that.  A  lot  of  things 
need  to  be  done. You  need  to  understand  the  application. 
Then  there’s  the  network  and  the  database  —  that  is  a  lot 
of  customization  just  to  make  sure  your  application  is 
redundant  7  by  24. The  vendors  are  on  the  right  track  with 
the  idea  and  currently  are  saying  that  they  will  come  with 
a  team  of  people  and  do  it  for  you.  But  that’s  an  expensive 
and  long  process.  ■ 


Bamaswamy  Nagappan 


Managing  director  of  e-services 


Organization:  Pershing 
Responsibilities: 


4- 


Reports  to  the  CIO;  oversees  development  of  e-commerce 
applications;  and  ensures  application  delivery  across  Pershing 
and  customer  networks. 


Annual  IT  budget:  j  Undisclosed 


Previous  jobs:  Fifteen  years  at  Pershing;  five  years  in  IT  consulting. 


Background:  Bachelor's  degree  of  engineering  in  electronics  and 

communications  from  Anna  University  in  Chennai,  India. 


Home  network: 


Wireless  LAN,  enabled  and  interactive 
in  every  room  throughout  his  home. 


Last  good  manage¬ 
ment  book  read: 


Tom  Peters'  The  Circle  of  Innovation 
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•  Read  an  expanded 
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What  affect  will  Web  services  have  applications  development’ 

Within  our  architecture,  increased  testing  is  the  primary 
impact  introduced  by  Web  services.  Our  service-based 
architecture  has  implicit  support  for  Web  services,  allow¬ 
ing  services  to  be  created  that  can  be  accessed  via  a 
number  of  protocols  without  substantial  additional  devel¬ 
opment  effort.This  will  help  us  re-use  a  lot  of  these  ser¬ 
vices  to  offer  in  different  product  flavors.  Also,  our  cus¬ 
tomers  will  be  able  to  integrate  them  into  their  propri¬ 
etary  products. 


How  do  you  prioritize  security  concerns? 

Security  is  very  high  among  our  customers’  concerns. 
Before  they  use  our  service,  they  actually  have  their  secu¬ 
rity  team  come  and  audit  us  to  make  sure  we  are  on  par. 
We  keep  with  industry  standards  in  terms  of  all  security 


(@  server 

Meet  the  IBM  eServer  BladeCenterr 

When  the  pieces  sync,  powerful  things  happen.  True  for  humans, 
true  for  BladeCenter.  The  IBM  eServer  BladeCenter  system  integrates 
servers,  networking  and  storage  resources  for  ease  of  management 
and  low  TCO.  From  a  centralized  remote  console,  you  can  deploy 
servers  in  minutes  (not  hours  or  days)l  Scale  out.  Reconfigure  on 
the  fly.  Buy  only  what  you  need,  when  you  need  it.  On  demand. 
Powered  by  the  Intel®  Xeon™  processor. 

eServer:  servers  for  on  demand  business. 

Can  you  S66  it?  See  it  at  ibm.com/eserver/integration 


Customer  experience  and  savings  will  vary  depending  upon  configuration  and  other  factors.  Blade  servers  for  BladeCenter  are  sold  separately.  IBM,  the  e-business  logo,  eServer  and  BladeCenter  are  trademarks  or  registered  trademarks 
of  International  Business  Machines  Corporation  in  the  United  States  and/or  other  countries.  Intel,  Intel  Inside,  the  Intel  Inside  logo  and  Intel  Xeon  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  in  the  United 
States  and  other  countries.  Other  company,  product  and  service  names  may  be  trademarks  or  service  marks  of  others.  ©2003  IBM  Corporation.  All  rights  reserved. 
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Join  Mark  Gibbs,  ITworld.com  technology  host,  as  he  moderates  an 
exclusive  webcast  and  live  roundtable  discussion  on  Cisco's  integrated 
solutions  for  enterprise  branch  and  small  offices 

REGISTER  TODAY! 

"Empowering  Your  Branch  and  Small  Office  Environments" 

Webcast  Info:  October  2"^  at  9:00  am  PST  /  12:00  pm  EST 
Who  Should  Attend:  IT  and  Business  Decision  Makers 

Register  today  at: 

http;//wvvw.itworld.com/empowered 


Gibbs  brings  together  Mike  Volpi,  Sr.  Vice  President 
Routing  Technology  at  Cisco  Systems  and  Zeus  Kerravala, 
Vice  President  Enterprise  Infrastructure  from  the  Yankee 
Group  for  an  in-depth  look  at  the  challenges  organizations 
are  facing  today  in  reducing  network  costs  while 
enhancing  productivity  and  support  for  branch  and 
remote  employees. 

Also  hear  from  customers  about  how  deploying  Cisco  Full  Service  Branch 
Solutions  has  benefited  their  organization  by  boosting  productivity  and 
lowering  operational  costs  with: 

•  Security  solutions  for  remote  assets  including  information,  people,  and 
facilities 

•  Business  voice  and  video  solutions  for  toll  bypass,  call  processing, 
voicemail,  and  video-based  training  and  employee  communications 
services 

•  Web  application  optimization  for  intranets  and  mission-critical  applica¬ 
tions  such  as  ERP,  CRM  and  SCM 

•  New  approaches  for  driving  down  costs  of  WAN  connectivity 

•  Teleworking  solutions  for  workplace  flexibility  and  business  resilience 


Cisco  Systems 


(gBSEB  NetworkWorld 


Sponsored  by  Cisco  Systems 
In  partnership  with  Network  World  and  ITworld.com 
Produced  by  Accela  Communications 


■■ 


I 

J 


1  www.nwfu8ion.com 

1 

9/29/03 

NetworkWorld 

31 

Providers 

■  THE  INTERNET  ■  EXTRANETS  ■  INTEREXCHANGES  AND  LOCAL  CARRIERS 

■  WIRELESS  ■  REGULATORY  AFFAIRS  ■  CARRIER  INFRASTRUCTURE  DEVELOPMENTS 


DSL  Forum  tai^ets  business  services 


■  BY  DENISE  PAPPALARDO 

Quality  of  service,  bandwidth  on  demand 
and  flexibility  are  not  terms  that  generally 
are  considered  synonymous  with  DSL  ser¬ 
vice,  but  they  might  be  in  the  near  future. 

Earlier  this  month  the  DSL  Forum  accept¬ 
ed  a  technical  report, TR-059,  that  outlines 
a  new  IP-centric  architecture  aimed  at 
making  DSL  an  ironclad  data  communica¬ 
tion  choice  for  business  users. 

“The  biggest  benefits  for  business  users 
will  be  QoS  . . .  and  burstable  bandwidth,” 
says  Daniel  Briere,CEO  of  TeleChoice.  But 
the  industry  must  take  several  steps  before 
users  realize  these  benefits. 

Vendors  including  Copper  Mountain, 
Juniper  and  Redback  Networks  already 
are  upgrading  their  broadband  remote- 
access  servers  (BRAS,  pronounced  bee- 


■  AT&T  last  week  signed  a  three-year, 
$3.6  million  contract  with  North¬ 
western  Human  Services.  The 

Mid-Atlantic  mental  health,  juvenile 
and  adult  services  organization  is  con¬ 
solidating  its  hodgepodge  network- 
service  approach.  Northwestern, 
which  employees  6,500  people  in 
Pennsylvania,  New  Jersey,  Wash¬ 
ington,  D.C.,  and  Virginia,  worked  with 
nearly  two  dozen  service  providers 
before  moving  all  its  local,  long-dis¬ 
tance,  Internet  and  data  traffic  to 
AT &T’s  network. 

■  The  U.S.  government  has  approved 
Singapore  Technologies  Tele¬ 
media’s  plan  to  buy  a  61.5%  stake  in 
Global  Crossing.  Singapore  Technol¬ 
ogies  is  paying  $250  million  for  the 
bankrupt  carrier.  Global  Crossing  filed 
for  Chapter  11  bankruptcy  protection 
in  January  2002.  The  deal  was  under 
scrutiny  because  Global  Crossing  car¬ 
ries  some  U.S.  federal  government 
traffic  and  the  Singapore  government 
controls  Singapore  Technologies.  But 
despite  reported  U.S.  Department  of 
Defense  concerns,  the  Committee 
for  Foreign  Investment  in  the  U.S. 
approved  the  deal. 


razz)  to  support  the  new  architectural 
requirements. 

TeleChoice  estimates  service  providers 
will  spend  $810  million  on  new  BRAS 
equipment  over  the  next  two  years  to  sup¬ 
port  most  or  all  aspects  of  TR-059. 

BRASs  still  will  be  used  as  a  broadband 
aggregator  and  subscriber  manager,  but 
according  to  TR-059,  the  next  generation  of 
BRAS  also  will  support  billing  processes, 
bandwidth  management  and  QoS  for  each 
subscriber. 

The  new  BRAS  gear  will  let  service  pro¬ 
viders  provision  connections  at  Layer  3 
using  PPP  Termination  and  Aggregation 
instead  of  at  Layer  2  using  Layer  2 
Tunneling  Protocol  or  ATM,  says  Tom 
Anschutz,  principal  member  of  Bell- 
South’s  science  and  technology  organiza¬ 
tion  and  one  of  the  authors  of  TR-059. 

This  shift  to  the  network  layer, Layer  3,  pro¬ 
vides  more  flexibility  for  users  and  service 
providers,  Anschutz  says.  Currently  DSL  is 
fixed,  in  that  each  line  can  support  only 


■  BY  CAROLYN  DUFFY  MARSAN 

AT&T  Labs  is  developing  a  new  kind  of 
traffic  analysis  tool  —  dubbed  Internet 
Protect  —  that  is  designed  to  provide  cor¬ 
porate  customers  with  earlier  indications 
of  network  attacks. 

Although  Internet  Protect  is  being  kept 
under  wraps,  AT&T  confirmed  that  it  is 
conducting  an  early  test  of  this  tool  with 
several  large  corporations.  With  Internet 
Protect,  AT&T  has  set  up  a  special  Web 
portal  to  provide  a  steady  stream  of  infor¬ 
mation  about  anything  out  of  the  ordinary 
that  AT&T’s  network  operators  see,  particu¬ 
larly  on  the  Internet. 

“Worms  don’t  always  fire  off  and  work 
perfectly  We  see  all  the  test  attempts.  We  see 
the  fizzled  versions  of  stuff  in  advance,"  says 
Ed  Amoroso,  chief  information  security  offi¬ 
cer  at  AT&T.  “We’re  trying  to  change  the 
nature  of  our  relationship  with  customers 
so  when  we  see  . . .  indicators  of  something 
that  fizzled,  we  tell  everybody 

AT&T  officials  would  not  say  when 
Internet  Protect  will  be  commercially 
available  or  whether  it  would  be  offered 
under  the  Internet  Protect  brand.  But  they 
did  say  it  would  be  complementary  to 
intrusion-detection  systems. 


Future  of  DSL 

The  DSL  Forum  approved  two 
specifications  that  promote  a 
new  IP-centric  architecture  that 
promises: 

•  Dynamic  quality  of  service. 

•  Bandwidth  on  demand. 

•  Multicast  and  real-time  service 
delivery. 

•  Improved  network  utilization. 

•  Improved  traffic  management. 

•  New  service  options. 

•  Possible  cost  savings. 

V _ y 

one  connection.  Moving  to  Layer  3  will  let 
carriers  provision  a  DSL  connection  that 
can  connect  to  the  Internet,  a  VPN  and 
eventually  to  specific  Web  applications 


“We’re  trying  to  take  this  internal  technol¬ 
ogy  and  extend  it  to  CIOs  in  the  enterprise 
....  It’s  a  technology  that’s  very  promising,” 
Amoroso  says. 

Internet  Protect  is  part  of  a  larger  initia¬ 
tive  across  AT&T  Labs  to  improve  the  secu¬ 
rity  and  reliability  of  AT&T’s  increasingly  IP- 
based  network  infrastructure. 

“Network  attacks  are  clearly  on  the  rise,” 
says  Hossein  Eslambolchi,  AT&T  CTO,  CIO 
and  president  of  AT&T  Labs  in  a  recent 
conference  call  with  the  media.  “We  have 
seen  more  attacks  in  the  last  six  months 
than  we’ve  seen  in  the  last  10  years.” 

Eslambolchi  says  security  is  one  of  six 
strategic  areas  of  research  for  AT&T  Labs. 

“We  are  looking  at  innovations”  related  to 
network-based  security  Eslambolchi  says. 
“We  need  a  lot  better  ways  to  do  forensic 
analysis  of  viruses  and  worms.” 

As  an  example,  Eslambolchi  points  to  the 
MS-SQL  Slammer  worm,  which  was  re¬ 
ported  on  the  Internet  in  January  AT&T 
saw  anomalies  in  its  network  three  to  four 
weeks  before  that  worm  hit  and  was  able 
to  take  certain  precautions.  “When  the 
worm  actually  happened,  AT&Ts  network 
did  not  take  a  hit,"  Eslambolchi  said. 

Amoroso  says  the  rise  in  network  attacks 
AT&T  is  seeing  can  be  attributed  to  the 


such  as  videoconferencing. 

Many  carriers  are  expected  to  upgrade 
their  BRAS  equipment  or  deploy  new 
servers  early  next  year,  with  service 
enhancements  to  follow,  Briere  says.“We’re 
already  seeing  RFPs”from  companies  such 
as  SBC  Communications,  he  says. 

Once  a  carrier  has  deployed  next-genera¬ 
tion  BRAS  gear,  the  next  logical  step  would 
be  to  set  up  the  QoS  features.  The  forum  is 
proposing  using  the  Internet  Engineering 
Task  Force’s  Differentiated  Services  (Diff- 
Serv)  to  support  QoS.  Diff-Serv  uses  code 
points  to  identify  the  priority  level  of  indi¬ 
vidual  packets  that  traverse  the  network. 

“Service  providers  will  be  able  to  offer 
business-class  services  with  [service-level 
agreements]  that  can  support  mission-criti¬ 
cal  VPNs.  They  can’t  offer  these  services 
today  which  is  a  real  shortcoming  of  DSL,” 
says  Pat  Hurley  an  analyst  at  TeleChoice. 

The  forum  outlines  three  levels  of  service 
that  it  will  support  initially,  including 
See  DSL  Forum,  page  32 


growing  number  of  vulnerabilities  in  com¬ 
mercial  operating  systems  and  applica¬ 
tions  that  can  be  exploited  easily  by  writ¬ 
ing  worms. 

“Network  security  has  become  a  process 
of  hunting  down  the  latest  and  greatest 
information  on  vulnerabilities  and  trying  to 
patch  like  crazy  to  beat  the  worms,” 
Amoroso  says. 

With  Internet  Protect,  AT&T  will  use  inter¬ 
nally  developed  traffic  analysis  tools  to 
look  for  anomalies  such  as  traffic  spikes, 
traffic  drop-offs  and  unusual  protocols 
in  use. 

“We  do  [traffic  analysis]  better  than  any¬ 
body,”  Amoroso  says.  “By  traffic  analysis,  1 
mean  pulling  information  from  the  net¬ 
work  such  as  statistics  and  routing  infor¬ 
mation..  . .  It  turns  out  that  building  security 
tools  around  traffic  analysis  is  as  good  a 
theme  as  an/ 

Amoroso  uses  the  analogy  of  highways 
and  truck  bombs  to  explain  Internet 
Protect. 

“As  highway  people,  we  say  [focus  on] 
delivering  all  the  traffic. . . .  But  that’s  a  bitter¬ 
sweet  victory  if  what  we’re  delivering  Ls  tfie 
equivalent  of  truck  bombs,”  he  says.“Maybe 
there’s  something  we  could  do  on  the  high¬ 
way  to  filter  out  the  truck  bombs."  ■ 


AT&T  developing  early  warning  tool 
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RBOGs  stand  tall 

■  usually  don’t  say  nice  things  about 
telcos.  And  I  almost  never  say  nice 
things  about  their  lawyers.  But  here  I’ll 
do  both:  Kudos  to  the  lawyers  at  Verizon 
and  SBC  for  opposing  the  Recording 


Digital  Document  Security 
and  IT:  Everything  you 
need  to  know. 


What  are  the  most  significant  digital  copier 

•  security  issues? 

Various  copier  print  controllers  are  actually  servers 

•  that  queue  and  permanently  store  multiple 
document  files,  providing  administrator  access  to  the 
documents.  At  a  minimum,  most  digital  copiers  retain  the 
last  document  processed;  some  even  retain  multiple 
documents  totaling  hundreds  of  pages.  Others  redirect 
print  jobs  when  the  printer  is  busy  or  jammed,  making 
"denial  of  service"  attacks  possible. 

•  How  does  Sharp  protect  the  network  interface? 

The  Sharp  Ethernet  card  allows  administrators  to 

•  restrict  access  and  disable  unnecessary  protocols. 
With  this  network  card,  the  Sharp  digital  copier  is 
essentially  protected  by  its  own  firewall. 


against  recording  industry 


Industry  Association  of  America’s  request 
that  the  telcos  compromise  the  privacy  of 
their  customers.  Way  to  go,  guys. 

Here's  the  deal:  the  RIAA  has  asked  the 
regional  Bell  operating  companies,  includ¬ 
ing  Verizon  and  SBC,to  monitor  customers’ 
usage  of  their  DSL  services  and  report 
downloads  of  copyrighted  material.  To 
their  everlasting  credit,  the  telcos  have 
refused  to  comply  and  are  fighting  the 
RIAA  in  federal  court. 

“The  recording  industry  is  essentially 
granting  itself  more  power  than  law  en¬ 
forcement  has  under  the  Patriot  Act,”  Sara 
Deutsch,Verizon  vice  president  and  associ¬ 
ate  general  counsel, said  in  one  report. 

The  RIAA  doesn’t  believe  that  civil  rights 
are  the  issue. 

“[The  phone  companies’  position] 
doesn’t  pass  the  laugh  test  or  the  smell 
test,”  Matt  Oppenheim,  RIAA  senior  vice 
president  of  legal  affairs  reportedly  says. 

With  all  due  respect,  Mr.  Oppenheim, 
that’s  horsepucky 

The  former  RBOCs  have  a  long  and  dis¬ 
tinguished  track  record  of  protecting  their 
customers’  privacy  even  at  the  expense  of 
the  telcos’  own  interests.  I  worked  with 
RBOCs  in  the  mid-’90s  on  the  develop¬ 
ment  of  quality  of  service  that  would  have 
required  IP  packet  inspection.  RBOC  exec¬ 
utives  ultimately  rejected  these  services 
because  they  conflicted  with  customer 
privacy 

What  doesn’t  pass  the  smell  test  is  the 
RIAAs  own  position  with  respect  to  copy¬ 
right  enforcement.  Ultimately  its  approach 
is  outdated,  impractical  and  Orwellian  — 
and  benefits  neither  the  artists  whose  inter¬ 
ests  the  RIAA  supposedly  represents,  nor 
the  fans  whose  dollars  fuel  the  entire 


mu-sic  industry 

Don’t  get  me  wrong:  I  believe  in  copyright 
protection. Artists,software  developers  and 
other  content  creators  have  the  right  to  be 
compensated  for  their  efforts  and  deserve 
protection  of  their  intellectual  property. 

But  that’s  not  what  the  RIAA  is  really  fight¬ 
ing  for.  The  RIAA  acts  on  behalf  of  record 
companies,  not  artists.  And  record  compa¬ 
nies  are  fundamentally  distributors  and 
promoters  —  not  creators  —  of  content. 

What’s  going  on  is  that  the  Internet  has 
dramatically  cut  the  costs  and  enhanced 
the  efficiency  of  distribution  and  promo¬ 
tion  mechanisms,  in  the  process  is  making 
obsolete  many  of  the  core  business 
processes  of  record  companies.  In  other 
words,  record  company  executives  are  in 
approximately  the  same  position  that  man¬ 
ufacturing  workers  were  in  during  the  ’80s 
and  ’90s:Their  jobs  have  been  made  redun¬ 
dant  by  technology 

The  real  reason  the  RIAA  is  attempting  to 
force  telcos  to  drag  their  customers  into 
court  is  to  protect  the  jobs  of  record  exec¬ 
utives,  not  the  rights  of  artists,  who  benefit 
from  less  expensive  and  more  effective  dis¬ 
tribution  mechanisms. 

What  the  RIAA  needs  to  do  is  wake  up 
and  develop  cost-effective  distribution  and 
promotion  models  that  serve  fans  and 
artists  well.  If  it  can’t,  the  organization 
should  be  replaced  by  one  that  does. 

Regardless,  kudos  to  Verizon  and  SBC  for 
standing  up  to  the  RIAAs  encroachment  of 
our  civil  rights. 

Johnson  is  president  and  chief  research 
officer  at  Nemertes  Research,  an  indepen¬ 
dent  technology  research  firm.  She  can  be 
reached  at  johna@nemertes.com. 


How  can  you  be  sure  that  security  products 

•  actually  perform  as  claimed? 

The  Common  Criteria  program — administered  by 

•  the  U.S.  National  Security  Agency  and  the  National 
Institute  of  Standards  and  Technology — evaluates 
security  solutions.  Products  that  are  validated  under  the 
program  meet  security  levels  consistent  with  ISO  1 5408 
methodology. 

•  How  can  Sharp  improve  IT  security? 

Sharp  offers  print  privacy  solutions  designed  to 

•  restrict  unauthorized  personnel  from  seeing 
confidential  materials.  Copier  access  can  be  controlled 
and  monitored,  while  documents  retained  in 
printer/copier/scanner/fax  memory  are  immediately 
cleared  to  eliminate  unauthorized  access. 
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assured  forwarding,  expedited  forwarding 
and  best  effort,  which  respectively  repre¬ 
sent  first-,  second-  and  third-class  offerings. 
TR-059  does  not  lie  out  the  parameters  for 
each  level  of  service,  but  Anschutz  says  the 
forum  is  flushing  out  those  definitions  in 
separate,  but  related  working  groups.  This 
will  let  a  business  set  specific  performance 
levels  for  all  of  its  teleworkers  accessing  the 
corporate  VPN  using  DSL. 

DiffServ  also  will  be  used  to  guarantee 
priority  levels  to  specific  content  on  the  ap¬ 
plication  service  provider  (ASP)  network. 

TR-059  describes  this  ASP  network  as  a 
source  of  content  for  service  providers  and 
their  customers.  This  coalition  of  content 
providers  does  not  exist  today  and  repre¬ 
sents  one  of  the  more  difficult  steps  for  ser¬ 
vice  providers  adopting  the  TR-059  archi¬ 
tecture,  Anschutz  says. 

Essentially,  the  ASP  network  will  be  a  col¬ 
lection  of  content  providers  in  the  gaming, 
videoconferencing  or  business-application 
arenas.The  easy  part  will  be  to  establish  net¬ 
work  connections  with  these  companies, 
Anschutz  says.  But  forging  relationships 


with  application-oriented  companies  is  a 
different  challenge  for  these  DSL  providers, 
he  says.  The  DSL  providers  will  need  to 
establish  agreements  that  spell  out  every¬ 
thing  from  settlement  and  billing  to  who  is 
responsible  for  maintaining  service  levels. 

But  Briere  says  that  application  providers 
such  as  WebEx  Communications,  which 
provides  Web-based  conferencing  services, 
want  to  forge  such  relationships  to  drive 
usage  and  therefore  service  revenue. 

A  DSL  customer’s  connection  to  the  ASP 
network  is  expected  to  also  offer  users 
more  bandwidth  flexibility  Burstable  band¬ 
width  is  not  available  from  DSL  providers, 
but  likely  would  become  a  standard  fea¬ 
ture,  esp)ecially  for  bu-siness  DSL  services. 
For  example,  this  would  let  a  user  who  is 
downloading  a  training  manual  speed  up 
the  process  by  maxing  out  his  1.5M  bit/sec 
DSL  connection.  Once  the  download  is 
complete,  the  user’s  connection  returns  to 
a  standard  bandwidth  designation. 

While  the  new  QoS  features  and  band¬ 
width  flexibility  likely  will  mean  higher 
prices,  DSL  becomes  a  realistic  choice  for 
businesses  that  might  want  to  ditch  more 
expensive  low-speed  frame  relay  services. 
Hurley  says.B 


How  secure  is  your  digital  information? 


Protect  your  information  with  the  Data  Security 
Kit  from  Sharp.  Financial  facts,  personnel  records, 
customer  lists:  networked  copiers/printers  process 
sensitive  information  every  day.  Unfortunately,  their 
hard  drives  can  also  be  accessed  via  the  network, 
contributing  to  $60  billion  worth  of  information 
theft  every  year.'  To  protect  this  weak  link  in  your 


corporate  security,  we've  created  our  Data  Security 
Kit.  It's  the  first  copier  and  printer  protection  to 
be  validated  by  Common  Criteria,  a  government- 
sponsored  program,  and  it's  available  only  with 
our  Digital  IMAGER™  series  of  copiers/printers. 
Sharp's  Data  Security  Kit.  Enhanced  information 
protection  at  your  fingertips,  sharpusa.com/security 


Common  Criteria 
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Freedom  of  Choice  Comes  to  Wireless 

SCom's  modular  lineup  of  wireless  access  points  and  all-purpose  PC  Cards 
support  any  mix  of  WLAN  and  security  standards. 


Even  though  wireless  LANs 
have  been  available  for  years 
now,  many  enterprises  have 
shied  away  from  major 
implementations  for  a  number  of  rea¬ 
sons,  including  concerns  about  stan¬ 
dards,  security,  scalability  and  man¬ 
agement.  Nobody  wants  to  get  stuck 
with  technology  that  becomes  obso¬ 
lete  as  new  generations  emerge  or 
that  opens  the  door  to  intruders. 

3Com@  has  devised  a  wireless  LAN 
strategy  that  addresses  each  of  these 
concerns,  with  a  lineup  of  wireless 
products  that  support  all  existing 
WLAN  standards.  The  3Com  8200, 
8500  and  8700  Wireless  LAN  Access 
Points  use  a  modular  architecture  that 
allows  customers  to  upgrade  from  one 
wireless  standard  to  another  as 
requirements  dictate. 


802.11  a  radio  and  the  8700  includes 
both  types  of  radios.  3Com  also  offers 
upgrade  kits  that  allow  users  to  add  any 
type  of  radio  -  802.1  la,  1 1  b  or  1 1  g  - 
to  any  of  the  modular  access  points. 
That  means  users  can  employ  any  type 
of  access  point  and  be  assured  they 
could  later  buy  an  upgrade  kit  to 
address  future  requirements. 

A  single  3Com  Wireless  PC  Card  sup¬ 
ports  all  three  IEEE  802.1 1  wireless  net¬ 
working  standards,  enabling  a  client 
machine  to  connect  to  any  type  of  WiFi 
network.  The  WiFi-certified  card  comes 
with  3Com's  award-winning,  patented 
XjACK®  antenna,  which  retracts  inside 
the  card,  so  it  won't  break  off  when 
users  store  their  computers  in  travel 
cases.  The  XjACK  antenna  also  helps 
preserve  battery  life  because  it  draws 
power  only  when  extended. 


tion  with  RADIUS  server  authentica¬ 
tion  support  using  MD5  and  the 
Extensible  Authentication  Protocol 
(EAP),  including  EAP-TLS,  PEAP  and 
EAP-TTLS. 

To  protect  data  in  transit,  3Com  sup¬ 
ports  a  number  of  encryption  algo¬ 
rithms,  including  128-bit  Advanced 
Encryption  Standard,  and  Wireless 
Equivalent  Privacy  (WEP)  RC4  40/64- 
bit,  128-bit  and  154-bit  shared-key 
encryption. 

To  ensure  good  performance,  3Com 
access  points  and  PC  Cards  include 


Naturally,  3Com  access  points  and 
PC  Cards  support  the  top  speeds 
allowed  by  each  wireless  standard  -  up 
to  54  Mbps  for  802.1  la  and  802.1 1g, 
or  108  Mbps  in  turbo  mode,  which 
combines  the  throughput  of  two 
channels. 

MAKING  WIRELESS 
MANAGEABLE 

Using  the  Wireless  LAN  Manager, 
administrators  can  create  profiles 
with  the  specific  wireless  LAN  settings 
that  each  user  requires,  depending 


MODULAR 

SOLUTIONS 

With  3Com's  modular 
approach,  users  can  sup¬ 
port  any  mix  of  wireless 
standards  (see  table). 
3Com  offers  three  base 
models  of  access  points: 
the  3Com  Wireless  LAN 
Access  Point  8200 
includes  an  802.11b 
radio,  while  the  model 
8500  includes  an 


\  / 
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SECURE,  RELIABLE 
AND  FAST 

3Com  likewise  supports 
a  suite  of  security  stan¬ 
dards,  enabling  cus¬ 
tomers  to  match  the  level 
of  security  to  their  specific 
requirements.  To  protect 
against  unauthorized  net¬ 
work  access,  the  PC  Card 
and  access  points  support 
WiFi  Protected  Access 
(WPA),  the  next-genera¬ 
tion  WiFi  security  stan¬ 
dard,  802.1  X  authentica- 


3Com  wireless  LAN  access  points 
and  1  la/b/g  Wireless  PC  Card  with 
patented  XJACK  antenna  give  cus¬ 
tomers  the  ultimate  in  flexibility 
along  with  performance,  security 
and  management 


Hotelier  Gives  3Com  Wireless  5  Stars 


"When  you  roll  out  something  new,  you  anticipate 
glitches,  but  our  3Com  wireless  network  has  performed 
flawlessly  from  the  start.  Our  guests  love  the  conve¬ 
nience,  quality  and  value  —  and  we  love  our  ability  to 
offer  five-star  services  at  budget  rates.  Thanks  to  3Com, 
we're  competing  for  customers  with  much  bigger,  more 
prestigious  hotel  groups,  and  we're  winning." 

Vijay  Dandapani,  chief  operating  officer,  Apple  Core  Hotels. 


features  such  as  autonomous  load  bal¬ 
ancing,  ensuring  users  always  connect 
to  the  access  point  that  offers  fastest 
throughput,  and  dynamic  rate  shift¬ 
ing,  which  adjusts  connection  speed 
to  changing  traffic  and  environmental 
conditions. 

Like  many  other  3Com  products,  the 
access  points  support  Power  over 
Ethernet,  enabling  the  same  Category 
5  cable  that  connects  the  access  point 
to  the  network  to  supply  its  power. 
That  simplifies  installation  and  offers 
more  choices  in  mounting  options. 


WLAN  Standards  at  a  Glance 

Standard 

Speed 

Range 

(meters) 

Frequency 

Compatible 

Standard 

Comments 

802.11a 

54  Mbps,  or 
108  Mbps  in 
turbo  mode 

50 

5  GHz 

None 

Operates  on  a  low-interference  channel,  but  with  limited 
coverage.  Good  for  customers  with  dense  user  base. 

802.11b 

11  Mbps 

100 

1 

1 

2.4  GHz 

i 

802.1 1g 

The  most  widely  deployed  wireless  standard,  802.1 1b 
has  a  high  degree  of  multivendor  interoperability  but 
operates  in  the  crowded  2.4GHz  spectrum  and  has  a 
relatively  slow  top  speed. 

802.1 1g 

54  Mbps,  or 
108  Mbps  in 
turbo  mode 

100 

2.4  GHz 

802.11b 

Higher  speed,  but  still  compatible  with  the  millions  of 
installed  802.1 1b  products.  Faces  same  spectrum  issues 
as  802.11b. 

on  where  they  need  to  connect  from. 
As  users  change  location,  they  mere¬ 
ly  click  on  an  icon  for  the  new  loca¬ 
tion  to  configure  the  card. 

3Com  also  supports  management 
standards  including  SNMP,  enabling 
a  3Com  wireless  network  to  be  man¬ 
aged  alongside  a  wired  network  from 
platforms  including  the  3Com 
Network  Supervisor  and  HP 
OpenView.  Using  an  embedded  Web 
server  browser,  customers  can  config¬ 
ure  parameters,  run  diagnostics  and 
monitor  performance  of  the  wireless 
LAN  from  anywhere  on  the  network. 

The  3Com  wireless  LAN  story  is  all 
about  freedom  of  choice.  Whether  it's 
choosing  the  wireless  LAN  standard 
that  best  fits  your  environment  now  - 
knowing  you  can  upgrade  if  require¬ 
ments  change  -  or  the  mix  of  authen¬ 
tication  protocols  and  encryption 
standards,  even  the  management 
platform,  3Com  offers  options  to 
match  most  any  enterprise  require¬ 
ment.  In  short,  3Com  has  eliminated 
the  roadblocks  to  widespread  enter¬ 
prise  wireless  LAN  deployments. 


i.earn  More  About  3Com  Download  the  free  3Com  white  paper,  "Deploying  802.11  Wireless  LANs." 
Wir;  less  Network  Solutions  visit:  http://www.nwfusion.com/go/WLAN3 
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Ramping  up  remote  access  for  all 

Two  insurance  firms  turn  to  SSL  VPN  to  extend  secure  access  to  tens  of  thousands. 


HOW  IT  WORKS 


Q  Any  browser 


Whale  SSL  VPN 

Whale  Communications’  e-Gap  Appliance  provides  Web 
remote  access  to  internal  corporate  resources  without 
directly  connecting  to  a  network. 

Application  servers 


e-Gap  Appliance 


© 
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External  Air  Gap  switch  Internal 
e-Gap  server  e-Gap  server 
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Firewall 


Authentication  servers 


O  Employee 
types  URL 
into  a  Web 
browser 
to  access 
corporate 
network. 


©  The  request  is 
received  by  the 
external  e-Gap 
server,  one  of 
three  compo¬ 
nents  making  up 
the  e-Gap  Appii- 
ance.  The  server 
terminates  the 
TCP/IP  connec¬ 
tion. 


©  Raw  payload  is 
fetched  by  the 
Air  Gap  switch 
(a  memory 
bank  and  high¬ 
speed  analog 
switch),  which 
then  discon¬ 
nects  from  ex¬ 
ternal  server. 


O  The  Air  Gap  © 
switch  then 
connects  to  the 
internal  e-Gap 
server.  Data 
flows  between 
the  external  e- 
Gap  server  and 
internal  e-Gap 
server  at  100M 
bit/sec. 


Internal  e-Gap  server 
hosts  the  remote 
access  portal.  In 
addition,  ali  security 
intelligence  inciuding 
SSL  encryption  key, 
user  authentication 
and  authorization  and 
detailed  URL  inspec¬ 
tion  reside  on  the  in- 
ternai  e-Gap  server. 


©Application 
and  authenti¬ 
cation  serv¬ 
ers  commu¬ 
nicate  with 
internal  e- 
Gap  server  to 
respond  to 
valid  user 
requests. 


■  BY  TONI  KISTNER 

Like  many  global  companies,  Sentry  In¬ 
surance  and  risk-management  broker 
Willis  use  IP  Security  VPNs  to  provide  IT 
people  and  power  users  with  remote 
access  to  corporate  resources.  But  with 
tens  of  thousands  of  users  at  both  firms, 
they  find  the  pressure  is  mounting  to  pro¬ 
vide  remote  access  to  everyone  else. 

While  scaling  up  their  existing  Cisco  and 
Check  Baint  VPNs  is  an  option,  both  com¬ 
panies  found  the  cost  and  complexity 
unattractive.  What  these  and  countless 
other  firms  need  is  an  easy  and  affordable 
way  to  provide  access  to  corporate  Web 


■  IBM  and  Research  in  Motion 

recently  announced  plans  to  integrate 
IBM's  WebSphere  Everyplace  Access 
mobile  middleware  with  RIM's  Black- 
Berry  Enterprise  Server.  Adding  IBM's 
enterprise  application  access  tool  to 
BlackBerry  Mobile  Data  Service  and 
Wireless  Platform  would  give  users  of 
salesforce-automation  applications 
the  ability  to  access  request  prices, 
enter  orders,  determine  available 
inventory  and  the  like.  Field  service 
groups  can  have  sales  reports  and 
service  requests  pushed  out  to  them. 

■  Within  four  years,  smart  phones 
will  be  commonplace  and  camera 
phones  ubiquitous,  according  to  a  new 
report  from  In-Stat/MDR  called 
"Market  for  Smartphones  and  Cam¬ 
era  Phones  Heats  Up."  In  the  first 
quarter  of  2003, 1.7  million  smart 
phones  and  7,8  million  camera  phones 
were  sold,  and  In-Stat  predicts  a  com¬ 
pound  annual  growth  rate  of  94.5% 
and  53.2%,  respectively,  through  2007. 
But  high  prices,  technical  glitches, 
bulkiness  and  inadequate  network 
capacity  plague  smart  phones,  and 
camera  phones  need  better  image 
sensors,  more  onboard  memory, 
longer  battery  life  and  network 
improvements,  the  report  says. 


mail.or  oftentimes  just  a  single  application. 

Both  companies  looked  to  Secure  Soc¬ 
kets  l.ayer  (SSL)  VPNs,  which  are  easier  to 
scale  and  deploy. 

“Instead  of  giving  users  a  thick  VPN  client, 
we  just  point  them  at  a  URL,” says  Eliot  Irons, 
Sentry’s  information  security  manager. “The 
insurance  industry  is  highly  regulated,  and 
there’s  a  very  high  awareness  of  keeping 
our  customers’  data  safe.  I’m  trying  to  give 
everybody  peace  of  mind.” 

Irons  and  Mark  Brunette,  global  informa¬ 
tion  security  officer  at  Willis,  selected  the 
SSL  VPN  they  found  the  most  secure,  Whale 
Communications’  e-Gap  Appliance. 

Today,  1 ,500  Sentry  employees  and  about 
20,000  customers  —  including  indepen¬ 
dent  agents  and  other  firms  —  use  e-Gap  to 
access  claims  databases  via  a  3720  termi¬ 
nal-emulation  program,  company  intra¬ 
nets,  Web  Outlook  and  Sentry’s  401  (k) 
program  portal.  Sentry’s  agents  work  from 
home  and  other  remote  locations,  and 
must  use  two-factor  authentication  to  ac¬ 
cess  the  network. 

Whale’s  e-Gap  Remote  Access  device 
uses  application-level  filtering  to  check  in¬ 
bound  data  for  unusual  requests  and  those 
not  defined  within  the  scope  of  the  per¬ 
mitted  SSL  VPN  session.  But  most  notable  is 
Whale’s  Air  Gap  hardware  platform.  The 
box  includes  three  integrated  components: 
the  external  e-Gap  server,  the  Air  Gap 
switch  and  the  internal  e-Gap  server.  Each 
server  includes  a  single-board  computer. 
When  the  external  server  receives  inbound 
requests,  it  strips  off  any  networking  infor¬ 
mation  and  loads  encrypted  data  onto  the 
Air  Gap  switch.  This  component  has  a 
memory  bank  and  high-speed  analog 
switch. When  it  receives  data,  it  disconnects 
from  the  external  server,  switches  sides, 
connects  to  the  internal  server  and  passes 
along  the  request. 

Irons  chose  Whale  quickly  because  he 
was  familiar  with  Air  Gap  technology  from 
his  days  as  a  security  officer  in  the  US.  mil¬ 
itary,  where  the  technology  originated.At 
Sentry’s  annual  security  assessment.the  out¬ 
side  firm  that  tested  his  network  perimeter 
was  impressed.  “At  first  they  didn’t  know 
what  we  had,”  Irons  says.“Once  they  figured 
it  out,  they  gave  us  a  really  high  mark.” 

When  Brunette  came  to  Willis  two  years 
ago,  he  found  the  company’s  iNotes  server 
—  which  served  55  users  in  one  business 
unit  at  the  time  —  sitting  in  the  network 
demilitarized  zone. 


“The  IT  people  didn’t  stop  to  think  that 
our  mail  files  were  potentially  accessible 
via  the  Internet,”  Bmnette  says.“They  said  it 
was  the  easiest  wa/ 

Willis  gave  Brunette  the  authority  and 
budget  to  increase  security  so  Brunette 
added  e-Gap  Appliance  and  moved  the 
iNotes  server  to  the  internal  network.  Now 
to  access  e-mail,  users  log  on  to  a  Web  page 
and  give  their  credentials  and  SecurlD,and 
e-Gap  Appliance  makes  the  call  to  the 
internal  network. 

“While  it’s  recommended  security  prac¬ 
tice  that  you  never  call  from  a  less  secure 
to  a  more  secure  network,  you  can  with 
Whale  because  the  outside  box  doesn’t 
really  call  inside,”  he  says. 

Whale  also  heightens  security  on  the 
client  side.  Its  Attachment  Wiper  clears  all 
temp  files,  browser  cache,  downloaded 
files  and  pages,  cookies,  history  data,  user 
credentials  and  any  other  data  trace  left  by 
a  user  while  accessing  corporate  resources 
via  a  Web  browser.  E-Gap’s  Secure  lx)goff 
technology  replaces  HTTP  Basic  Authenti¬ 
cation  to  ensure  the  user’s  credentials  are 
never  cached  at  the  client  machine. 


Timeouts  must  be  implemented  to  ensure 
user  sessions  don’t  stay  live  indefinitely, and 
users  must  re-authenticate  periodically 

So  far,  Brunette  has  put  4,000  users  on  the 
iNotes  server  in  North  America;  his  next 
challenge  is  figuring  out  the  best  way  to 
extend  access  to  Willis’  international  of¬ 
fices,  which  currently  are  served  by  slow 
and  expensive  dial-up  accounts.  Because 
Willis’  mail  infrastructure  is  distributed,  the 
company  has  mail  servers  in  many  of  its 
remote  offices.  While  international  users 
could  access  their  mail  by  going  through 
the  single  epap  Appliance  in  Nashville, 
bandwidth  constraints  in  some  overseas 
offices  make  that  approach  too  slow. 
Instead,  he  and  his  team  are  considering 
centralizing  mail,  selecting  some  hubs,  and 
putting  mail  servers  with  iNotes  and  eOap 
Appliances  at  each  server.  Another  option  is 
to  increase  the  bandwidth  and  have  over¬ 
seas  users  access  their  mail  via  the  single 
e-Gap  appliance  in  Nashville. 

“Right  now,  we’re  profiling  our  users:  What 
do  they  need,  just  mail  or  access  to  back¬ 
end  databases  too?  Once  we  figure  that 
out,  we’ll  take  our  next  step,”  he  says.  ■ 


You’re  IT. 


Your  business 

depends  on  technology. 

Even  as  IT  budgets  are  shrinking,  your  company  relies 
on  you  to  solve  problems,  to  keep  systems  running,  and 
to  incorporate  new  technologies.  And  the  best  solutions 
are  open  to  debate  — build  vs.  buy,  open  source  vs. 
proprietary  technology,  .NET  vs.  J2EE,  the  promise  and 
hype  of  on-demand  computing. 

7  themes  that  are  transforming  IT: 

As  new  ideas  and  technologies  arise  throughout  the  IT 
industry,  seven  key  themes  have  emerged  that  will 
change  the  way  you  do  business: 

■  Wireless  and  Mobility  ■  Windows  Platform 

■  The  Digital  Enterprise  ■  On-Demand  Computing 

■  Web  Services  ■  Security 

■  Open  Source  and  Linux 


Got  tho  big  pictUrO.  At  COMDEX,  you’ll  see  all 
the  options  side-by-side  in  a  single  vendor-neutral 
environment.  Top-tier  conference  sessions,  tutorials, 
keynotes,  and  Innovation  Centers  will  show  you  how  to 
make  the  latest  in  IT  relevant  to  your  business  needs. 

See  it  all  at  COMDEX  .  Hear  what’s  coming  next 
from  an  elite  lineup  of  speakers  from  Amazon.com,  AT&T 
Wireless,  Computer  Associates,  Hewlett-Packard,  Intel, 
Microsoft,  Nokia,  Siebel,  Sun  Microsystems,  Symantec, 
and  more.  Share  ideas  with  industry  visionaries,  business 
leaders,  and  thousands  of  your  peers.  And  experience  the 
vitality  of  an  $870  billion  industry  being  reborn. 

Visit  COMDEX.com  for  details. 


Save  up  to  $200. 
Register  by  October  17. 
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Spyware  removal  tools  stop  snoopers 


HOW  IT  WORKS 


Anti-spyware  utilities 


Spyware-removal  tools  purge  Windows  registry 
entries,  individual  files  and  entire  directories  on  a 
hard  drive. 


Unknown  e-mail 
or  cookie  source 


P  3 

I  Users 


Anti-spyware 
update  server 


Enterprise  anti¬ 
spyware  server 


Anti-spyware 

administration 

console 

System  J  .1 
administrator 


O  System  administrator  automatically  gets  the  latest  anti-s|)yware  definition  file  iram  the  anti-s|)yware 
server  via  the  Internet  He  pushes  it  to  users  whose  PCs  are  running  the  anti-spyware  ciient 
O  User  unknowingly  gets  spyware  installed  via  e-mail  or  cookie  fh)m  a  Web  site, 
e  The  anti-spyware  ciient  performs  its  scheduied  sweep,  finds  the  spyware  and  disabies  it. 

O  Administration  console  alerts  system  administrator  of  disabied  spyware. 


■  BY  RICHARD  KOONTZ 

Each  day  companies  are  faced  with  in¬ 
creasingly  sophisticated  attacks  on  privacy 
and  security  that  evade  traditional  firewalls 
and  are  immune  to  anti-virus  technology. 
The  most  threatening  and  rapidly  growing 
attacks  come  in  the  form  of  spyware. 
Spyware  is  any  software  surreptitiously 
installed  on  a  system  that  can  monitor  and 
record  aspects  of  the  system  and  broad¬ 
cast  this  information  back  to  a  third  party 

Staying  one  step  ahead  of  spyware  cre¬ 
ators  requires  a  dedicated  removal  tool. 
Anti-spyware  utilities  are  pattern-based, 
adaptive  programs  that  scan  systems  to 
find  and  remove  Trojans,  key  loggers, 
dialers,  adware  and  cookies. 

In  many  ways  anti-spyware  tools  look  like 
anti-virus  software  in  a  network.  They  use 
clients,  an  anti-spyware  server  and  an 
administration  console.  Because  spyware 
changes  on  a  daily  basis,  automatic  spy¬ 
ware-definition  updates  from  vendors  are 
critical.  Updates  are  pulled  from  an  anti¬ 
spyware  server  via  the  Internet  and  pushed 
to  clients  using  a  centralized  control  panel. 

The  most  sophisticated  anti-spyware  ven¬ 
dor  research  labs  will  generate  long  lists  of 
characteristics  that  tell  users  what  spyware 


Got  great  ideas 


■  network  World  \s  looking  for  great 
ideas  for  future  Tech  Updates.  If  you 
want  to  contribute  a  primer  on  a  spe¬ 
cific  technology,  standard  or  protocol, 
contact  Amy  Schurr,  senior  managing 
editor,  features  (aschurr@nww.com). 


resides  on  a  machine,  where  it  is  located 
and  what  it  is  doing.  Anti-spyware  programs 
rely  on  these  characteristics  lists  and  use 
them  to  remove  Windows  registry  entries, 
individual  files  and,  in  some  cases,  entire 
spyware  directories  from  a  hard  drive. 

Spyware  generally  installs  an  executable 
along  with  other  files  in  various  locations 
throughout  an  operating  system.These  files 
are  called  spyware  traces.  Removing  spy- 
ware  without  a  dedicated  anti-spyware  tool 
leaves  a  trace.  Moreover,  elementary  spy¬ 
ware-removal  utilities  simply  remove  the 
traces,  which  might  stop  the  symptoms  but 
don’t  get  to  the  root  of  the  problem. 


But  unlike  typical  viruses,  not  all  spyware 
should  be  automatically  removed.  As  such, 
administrators  need  to  define  user  profiles 
based  on  programs  their  users  need. 

For  example,  RemEye  is  a  console  appli¬ 
cation  that  installs  a  WinVNC  server.  It  is 
often  employed  as  an  easy-to-use  installer 
and  can  be  a  good  administration  tool.  But 
because  it  installs  with  a  default  password 
of  “abed,”  it  also  makes  an  excellent  Trojan 
horse.  Many  pieces  of  spyware  also  are 
linked  to  legitimate  applications  and  are 
required  for  those  applications  to  function. 

Sophisticated  anti-spyware  tools  will  not 
only  find  all  trace  files  associated  with  a 


spy,  but  also  offer  a  comprehensive  data¬ 
base  of  spyware  descriptions  detailing  the 
characteristics  and  threat-level  associated 
with  each  spy  found.  An  up-to-date  data¬ 
base  is  essential  to  help  administrators 
develop  anti-spyware  user  profiles. 

Once  user  profiles  have  been  created,  re¬ 
moving  spyware  is  a  straightforward  pro¬ 
cess.  In  a  typical  removal  scenario,  a  client 
is  infected  with  a  piece  of  spyware,  and 
once  a  scheduled  scan  is  run,  the  anti-spy¬ 
ware  application  finds  and  quarantines 
(disables)  the  spy  based  on  the  user  pro¬ 
file.  At  this  point,  the  spy  can  be  perma¬ 
nently  removed  or  reinstalled. 

Spyware  is  changing  on  a  weekly  and 
sometimes  even  daily  basis.  Some  types  of 
spyware  now  can  shoot  back  when  fired 
on  in  an  attempt  to  remove  anti-spyware 
utilities.  In  other  cases,  spyware  changes 
names  and  jump  from  one  location  to 
another  when  it  realizes  it  has  been  detect¬ 
ed  and  is  about  to  be  destroyed. 

As  a  result,  the  anti-spyware  strategies  that 
worked  yesterday  might  not  work  tomor¬ 
row.  The  rapid  metamorphosis  points  to  the 
need  for  an  automated  update  system,  as 
well  as  a  dedicated  anti-spyware  program 
that  has  the  ability  to  adapt  as  it  encoun¬ 
ters  new  spyware  patterns. 

However  IT  professionals  choose  to  ad¬ 
dress  the  issue,  spyware  in  corporate  envi¬ 
ronments  pose  a  significant  threat  to  work¬ 
er  productivity  and  network  and  data  secu¬ 
rity.  Anti-spyware  protection  can  augment 
corporate  privacy  and  security  efforts,  and 
is  becoming  a  necessary  part  of  doing 
business  in  today’s  Internet-enabled  world. 

Koontz  is  vice  president  of  software 
development  for  Webroot  Software.  He  cun 
be  reached  at  rkoontz@webroot.com. 


Dr.  Internet  By  Steve  Blass 

To  learn  more  about  keeping  our  network  from 
being  compromised,  we  subscribed  to  a  security 
mailing  list  We  have  read  about  the  Snort  intru- 
sioiHietection  system.  Can  we  run  it  on  a  Windows 
system  and  use  it  to  monitor  the  networld* 

Yes,  Snort  can  run  on  a  Windows  system.  The 
Snort  home  page  (www.srx)rt.org)  even  lets  you 
download  a  pre-compiled  Windows  version  (details 
at  www.nwfusion.com,  DocFinder:  7835)  so  you 


don't  have  to  compile  the  program  from  source 
code.  You  should  also  get  a  copy  of  the  Snort 
Users  Manual  and  a  copy  of  the  Windows  Guide, 
which  explains  the  need  to  install  a  packet  capture 
driver  before  installing  Snort.  You  can  use  winpeap 
(go  to  DocFinder;  7836)  or  packet2k  (http://Security 
Focus.net)  to  do  this. 

Snort  operates  in  three  modes.  You  can  use  it  as 
a  sniffer  that  displays  all  network  traffic  on  your 
screen,  and  as  a  packet  logger,  which  writes 


copies  of  the  packets  to  a  file  on  your  disk  drive. 
The  third  way,  network  intrusion  detection,  is  cov¬ 
ered  in  the  user  manual.  In  this  mode.  Snort  uses 
a  rules  file  (snort.conf)  to  decide  which  packets 
represent  intrusion  attempts.  Writing  Snort  rules 
is  explained  in  detail  on  the  snort.org  Web  site. 

Blass,  a  netu>ork  architect  at  Change@Work  in 
Houston,  can  be  reached  at  dr.internet@change 
atwork.com. 
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A  Bayesian  filter  that  nabs  99.75%  of  spam? 


GEARHEAD 
INSIDE  THE 
NETWORK 
MACHINE 

Mark 

Gbbs 


We  suspect  that  you  had  more  than 
enough  mathematics  in  the  form  of 
Bayes  Theorem  last  week  so  this 
week  we’ll  explain  how  it’s  used  in  what  is 
called  Bayesian  filtering  to  remove  spam 
(note  that  the  same  techniques  also  can  be 
used  for  general  text  filtering). 

One  of  the  best  and  most  accessible 
descriptions  of  Bayesian  filtering  is  an  arti¬ 
cle  from  August  2002  titled  “A  Plan  for 
Spam”  by  P&ul  Graham  (see  details  at 
www.nwfusion.com,  DocFinder:  7838). 

The  background  to  this  work  was  an 
attempt  to  build  a  spam-proof  Web-based 
mail  reader  written  in  a  version  of  Lisp 
called  Arc  that  Graham  and  his  colleagues 
were  developing  (we  have  no  idea  what 
happened  to  this  project). 

Upfront  Graham  says  that  using  the  filter 
“we  now  miss  less  than  5  per  1,000  spams, 
with  0  false  positives.”  Sounds  good,  and 
the  amazing  thing  about  the  filter  is  that  it 
really  isn’t  that  complicated.  Actually,  if 
you  read  Graham’s  first  and  second 


papers  you’ll  see  he  added  features  to  the 
second  version  that  improved  perfor¬ 
mance  considerably 

To  create  the  filter,  sample  sets  of  spam 
and  non-spam  mail  were  analyzed  by 
breaking  the  text  into  tokens.  Tokens  are 
created  from  the  text  of  a  message  using  a 
few  simple  rules:  Case  is  preserved;  excla¬ 
mation  marks  are  retained;  periods  and 
commas  are  retained  if  they  occur 
between  two  digits  (to  allow  IP  addresses 
and  prices  to  be  included);  price  ranges 
are  recognized  (such  as  $20  to  $25)  and 
turned  into  two  separate  tokens  (for 
example,  $20  and  $25);  and  tokens  that 
occur  within  header  fields  such  as  To:, 
From:  and  Subject:,  or  within  URLs  are 
prefaced  with  an  identifier  to  let  them  be 
weighted  separately  from  a  body  token 
(for  example,  “Enlargement”  in  the 
Subject:  becomes  “Subject*Enlargement” 
—  the  asterisk  can  be  any  character  that  is 
ignored  in  messages). 

The  frequency  of  all  tokens  in  each  set  is 
counted,  and  Bayes  Theorem  is  applied  to 
derive  another  table  of  the  probabilities 
associated  with  each  token  being  used  in 
a  spam  or  a  non-spam  message.  It  is  worth 
noting  that  Graham  weights  the  non-spam 
tokens  twice  as  heavily  as  spam  tokens  to 
minimize  false  positives  —  the  extra 


weight  actually  makes  the  filter  less  sensi¬ 
tive  to  spam  but  safer  for  non-spam  (on 
the  other  hand,  the  success  Graham 
claims  makes  the  decreased  sensitivity 
irrelevant). 

When  new  mail  arrives  the  tokens  are 
extracted,  and  the  15  tokens  with  the 
highest  spam  probability  are  used  to  cal¬ 
culate  the  probability  that  the  message  is 
spam.  If  the  spam  probability  exceeds  the 
threshold  value  —  Graham  uses  0.9  — 
then  the  message  is  assumed  to  be  spam. 

Graham’s  second  filter  had  a  number 
of  improvements  over  the  first  version 
that  broadened  the  range  of  tokens  cre¬ 
ated  and  how  they  were  compared  with 
the  table  of  tokens  with  spam  probabili¬ 
ties.  See  Graham’s  second  paper,“A  Better 
Bayesian  Filter”  (DocFinder:  7839),  for 
the  details. 

One  interesting  issue  is  how  to  handle 
HTML  mail  —  do  you  ignore  the  HTML  or 
analyze  it?  Graham  chose  the  middle  road 
and  selected  to  analyze  some  HTML  cod¬ 
ing  such  as  anchors  and  images,  as  these 
contain  URLs  that  often  contain  words  or 
patterns  that  indicate  spamming.  Even 
font  tags  prove  to  be  useful  because 
apparently  spammers  have  a  predilection 
for  specifying  bright  red  text! 

Does  it  work?  Well,  Graham  says  in  his 


last  article:  “Between  Dec.  10,  2002,  and 
Jan.  10, 2(X)3, 1  got  about  1,750  spams.  Of 
these,  four  got  through.  That’s  a  filtering 
rate  of  about  99.75%.”  Impressive  stuff. 

So  why  does  Bayesian  filtering  work, and 
can  spammers  get  around  it?  Bayesian  fil¬ 
tering  works  by  pure  statistics,  which  is  far 
simpler  and  computationally  more  effi¬ 
cient  than  trying  to  have  a  filter  that 
understands  message  syntax  or  content  in 
any  meaningful  way.  The  use  of  tokens 
provides  a  broad  and  consistent  range  of 
data  points  and,  if  you  tune  the  filter  by 
adding  or  removing  your  own  spam  and 
non-spam  words, you  wind  up  with  a  filter 
that  is  unique  to  you  to  a  greater  or  lesser 
degree.  This  means  that  a  spammer  can’t 
make  guesses  about  any  given  filter  con¬ 
figuration  accurately  enough  to  defeat  it 
except  by  blind  luck! 

But  as  effective  as  Bayesian  filtering  can 
be,  it  requires  optimization  to  be  really 
good.  And  combining  it  with  whitelists  to 
minimize  false  positives,  blacklists  to  mini¬ 
mize  false  negatives  and  other  techniques, 
such  as  source  verification,  makes  for  a 
more  accurate  spam  filter  that  needs  less 
fine-tuning. 

See  if  we  filter  you  at  gearhead@ 
gibbs.com. 


Cool 

Quick  takes 
on  high-tech  toys 
By  Keith  Shaw 


For  two  days  in  San  Diego,  the  press,  investors  and 
other  dignitaries  got  to  see  what’s  new  in  the  world 
of  mobility  at  the  Demomobile  2003  show,  run  by 
IDG  Executive  Forums, a  division  of  Network  World. 

While  there  was  lots  to  see  in  the  enterprise  arena,  what 
most  of  us  wanted  to  see  was  some  new  gadgetry.  The 
show  didn’t  disappoint, and  here’s  a  roundup  of  what  you 
might  be  drcxjling  for  in  the  next  few  months. 


The  Zodiac  from  Tapwave  is  like  a  Game  Boy  for  grown-ups. 


The  coolest  gadgets  from  Demomobile 


It's  a  Palm!  It's  a  Game  Boy! 

The  Tapwave  Zodiac  devices  (there’s  a 
32M-byte  model  for  $299  and  a  128M-byte 
model  for  $399)  were  clearly  the  ones  that 
everyone  wanted  to  play  with.  The 
Zodiacs  are  Palm  OS-based  handheld 
PDAs  that  also  act  like  a  personal  entertain¬ 
ment  handheld  and  can  play  games,  MP3 
music  files  and  video  clips.  These  are 
being  aimed  at  the  18-  to  34-year-old 
“executive”  market. 

I  wouldn’t  expect  companies  to 
begin  placing  a  ton  of  orders  for  these 
anytime  soon  as  a  way  to  mobilize 
their  data-entry  applications,  but  the 
specifics  on  the  device  still  are 
enticing  enough  for  sales  execu¬ 
tives  and  others  who  want  a  com¬ 
bination  game  device  and  PDA. 

The  Zodiacs  are  expected  in 
mid-October.  Go  to  the  Tapwave 
Web  site  to  order. 

Hands-free  without 
Bluetooth 

Another  must-have  or  at  least  a 
must-see  item  is  the  Aura  Communications’ 
and  fone-GEAR’s  Cord  Free  headset,  which  uses  mag¬ 
netic  induction  to  create  a  hands-free  and  cord-free  head¬ 
set  for  mobile  phones. The  headset  works  on  a  single  AA 
battery  and  offers  up  to  25  hours  of  talk  time  and  up  to 
three  months  of  standby  jxjwer,  the  company  says.  It  is 
compatible  with  phones  that  do  not  have  Bluetooth,  yet 
creates  the  same  kind  of  effect  of  not  having  to  be  con- 


Fonfr^EAR's  Cord  Free  headset 
works  without  Bluetooth. 


nected  to  your  phone  by  a 
cord  to  use  a  hands-free 
headset.  My  favorite  phrase 
during  the  demonstration 
was  that  the  device  creates  a 
“secure  communication  bubble” 
for  end  users.  The  device  also  might 
cost  less  than  Bluetooth  headsets,  with 
starting  prices  ranging  from  $60  to 
$80. The  product  will  be  available  in 
the  fourth  quarter,  the  company  said. 
Go  to  the  Aura  Web  site  for  more 
details. 


Why  is  my  cat  calling  me? 

Many  current  cell  phones  have  the  abil¬ 
ity  to  take  caller  ID  and  associate  a  photo 
with  the  call.  Some  also  can  have  person¬ 
alized  voice  ring  tones  associated  with 
them.  Now  comes  Mobile  Veepers  from 
Pulse  3D  —  the  technology  can  take  a  two- 
dimensional  photo  and  create  a  3-D  animated 
picture  with  voice  capabilities.  Soon,  expect  to 
see  “face  tones”  that  lets  the  caller  ID  have  an 
animated  photo  telling  you  to  answer  the  phone. 
More  details  on  the  technolc^  are  available  at  Pulse  3D’s 
Web  site.  During  their  demo,  PuLse  3D  officials  showed  an 
example  in  which  a  dog  was  “calling”  using  a  French  voice. 
I  guess  you  had  to  be  there. 


Shaw  can  be  reached  at  kshaw@nww.com. 


•  miff  till  t/mrinn  till 

niitiiiiiiiniiiriiiiiiii 

•ij  111  I  till  I  nil  I  III!  I  III  I 

/initniiitiiiiiiiiiiii 


Wtft/niiiniiiiiiim"' 

^4niifitiiitii>iiiiifi*i 

iyyiifiiiijiriiiiii"ti<i> 

iiiiiiiriiii'iii’ii'""'' 

--  ■  . 


iiiiiiiiiim$ttitti,t 


Mm 

MMMMiok 


iiiinnniiiii>iiiiiii^,,iiiiiiit,i,. 

urttmtfTrmnii^y 


Dell  has  a  customized  IT  solution  for  your  business,  no  matter  what  business  you're  in,  or  what  size  it  is.  From  PowerEdge"'  servers  featuring  Inter  Xeon*'  processors 
to  network  support  products  like  PowerVault"  Storage  and  PowerConnect”  switches,  Dell  offers  flexible,  high-performance  industry-standard  technologies  and  software 
solutions  that  are  just  right  for  your  particular  business  needs.  And  we’ll  help  you  every  step  along  the  way.  Whether  it's  planning  and  design,  testing  and  validation,  systems 
management,  or  our  award-winning  24x7  service  and  support,  Dell  will  help  you  create  an  IT  infrastructure  that's  easy  to  choose,  deploy  and  manaqe.  So  make  life  easy  on 
yourself  and  get  a  big  advantage  over  your  competition  -  with  a  unique  IT  solution  from  Dell. 


Dell  Rated  #1  in  Intel-Based  Server  Satisfaction 

21  Out  of  22  Consecutive  Quarters 
Technology  Business  Research 
Corporate  IT  Buying  Behavior  and  Customer  Satisfaction  Study 

First  Quarter  2003 
-July  2003 
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File&Print  Servers 


From  entry-level  servers  to  robust  rack-mountable 
solutions  that  fit  existing  infrastructures. 


/Vf  kVPOWEREOGE-  400SC  SERVER 


Small  Business  Value  Server 

•  Intel*  Celeron*  Processor  at  2GH2 

•  Upgradable  to  Intel*  Pentium*  4  Processor  at  3.20GHz 
with  800MHz  Front  Side  Bus" 

•  128MB  333MHz  ECC  DDR  SDRAM  (Up  to  4GB) 

•  40GB  (7200  RPMI  IDE  Hard  Drive 

•  Upgradable  to  240GB  of  Internal  Hard  Drive  Storage 

•  Embedded  Intel*  PRO  Gigabit”  NIC 

•  1-Yt  24x7  Dedicated  Server  Phone  Tech  Support 

•  1-Yr  Next  Business  Day  On-Site  Service' 

•  Small  Business  Pricing 


E-VALUE  Code:  18801-S21(l03g 


/Vf  lVPOWEREDGE~  650*  SERVER 


Low-Cost  General-Purpose  1U  Server 

•  Intel*  Pentium*  4  Processor  at  2.40GHz 

•  Upgradable  to  Intel*  Pentium*  4  Processor  at  3.06GHz 

•  128MB  266MHz  ECC  DDR  SDRAM 

•  Upgradable  to  3GB  of  SDRAM 

•  40GB  (7200  RPM)  IDE  Hard  Drive 

•  Upgradable  to  146GB  of  Internal  Hard  Drive  Storage 

•  ATA  100  IDE  RAID  Controller  Available 

•  Intel*  PRO  Gigabit”  NIC 

•  3-Yr  Next  Business  Day  On-Site  Service' 

•  Small  Business  Pricing 

04  1  $32/mo..  (46  pmts”) 

I  1 3  W  E-VALUE  Code:  18Gai-S21011g 


DatabaseSiWeb  Application-specific  servers 
HoStiny  Sarvars  ^^^I  niost  any  challenge. 


POWEREDGE"'2600  SERVER 


High-Performance  Tower  Server 

•  Intel*  Xeon“  Processor  at  2.40GHz 

•  Dual  Intel*  Xeon"  Processor  Capable  (Up  to  3.06GHz) 

•  512MB  266MHz  ECC  DDR  SDRAM 

•  Upgradable  to  6GB  of  SDRAM 

•  36GB  (10K  RPM)  Ultra320  SCSI  Hot-Swap  Hard  Drive 

•  Active  ID  Bezel  for  Manageability 

•  3-Yt  Next  Business  Day  On-Site  Service’ 

•  Small  Business  Pricing 

as  low  as  S49/mo..  (46  pmts.®) 

I  /  E-VALUE  Code:ia601-S21017g 


POWEREDGE™  1750*  SERVER 


1U  High-Performance  Rack  Server 

•  Intel*  Xeon“  Processor  at  2.40GHz 

•  Dual  Intel®  Xeon”  Processor  Capable  (Up  to  3.06GHz) 

•  256MB  266MHz  ECC  DDR  SDRAM  (Up  to  8GB) 

•  36GB  (10K  RPM]  Ultra320  SCSI  Hot-Swap  Hard  Drive 

•  Integrated  Dual-Channel  Ultra320  SCSI  Controller 

•  Active  ID  Front  Bezel  for  Monitoring  System  Health 

•  3-Yr  Next  Business  Day  On-Site  Service' 

•  Small  Business  Pricing 

^  4  low  as  $51/mo..  (46  pmts.'°) 

'P  10^^  E-VALUE  Code:  18601-S21018g 


Purchase 

Dell  offers  a  wide  range  of  reliable,  award-winning  technology,  all 
delivered  from  a  single  point  of  contact  -  and  our  expert  sales  associates 
are  there  to  help  you  find  the  technology  that's  right  for  your  business. 


Once  you’ve  selected  the  right  technology,  Dell  can  help  you  get  it  up  and 
running  quickly  and  cost-effectively  with  our  custom  on-site  installation 
and  configuration  services. 


Training  &  Certification  -Starting  at $100 


After  installation,  Dell  can  help  turn  your  employees  or  IT  staff  into  experts 
on  your  new  technology  through  a  variety  of  training  and  certification 
courses  -  helping  increase  your  business'  long-term  productivity. 


Service  &  Support 


The  support  doesn’t  end  at  the  sale.  Dell's  award-winning  service  and 
support  offerings  help  ensure  that  your  new  network  remains  up  and 
running  -  with  Web,  phone  or  on-site  service^  and  support. 


4-Way  Servers 

Handle  intense  networking  needs  with  ease. 

POWEREDGE"'  6600*  SERVER 


Quad  Processing  Power  in  Rack-Mountable  or 
Tower  Form  Factors 

•  Up  to  Four  Intel*  Xeon"  Processors  at  1 .50GHz 

•  Up  to  32GB  DDR266  ECC  SDRAM 

•  Up  to  1752GB  Maximum  Internal  HDD  Storage 

•  Embedded  Ultra  SCSI  Adaptec*  (IBOMB/s)  Controller 

•  Standard  Hot-Swap  Hard  Drives.  Hot-Swap  Redundant 
Fans  and  Hot-Swap  Redundant  Power  Supplies 

•  10  Hot-Plug  PCI-X  Slots 


Storage  Options 

Enhance  your  server  capabilities. 

DELL™  POWERVAULT™  725l\l  NAS 


Optimized  File  Storage  Across  the  LAN 

•  Intel®  Celeron®  Processor  at  2GHz 

•  384MB  DDR  SDRAM  (Up  to  3GB] 

•  4x40GB  (160GB)  IDE  Hard  Drives 

•  Up  to  1 TB  of  Internal  Storage  Capacity 

•  Microsoft*  Windows*  Powered  Network  Attached  Storage 

04  as  low  as  $49/mo.,  (46  pmls") 

'P  I  y  E-VALUE  Code:  18801-S21017 


Network  Switches 

Scalable,  high-performance  switches 
to  enhance  your  network. 

POWERCONNECT-  3324*  SWITCH 


High-Performance  Workgroup  Switch 

•  24  Fast  Ethernet  Ports  plus  2  Gigabit  Uplinks  (2  Copper  and 
2  SFP  Transceiver  Combo  Slots  for  Fiber) 

•  Stacking  Functionality  of  Up  to  192  Ports 

•  Advanced  Network  Management  and  Security  Features 

•  Industry  Standard  CLl  and  Easy-to-Use  Web  Interface 

•  3-Yr  Next  Business  Day  Advanced  Exchange 
Service^  Standard 


starting  at 

as  low  as  $107/mo.,  (46  pmts.”) 

E-VALUE  Code;  ia601-S21039g 


DELL/EMC 


If  you  have  more  than  300GB  of  storage,  visit 

www.dell.com/storagedmybiz  for  low  prices  on 
Dell/EMC  storage  arrays. 


$499 


as  low  as  $14/mo.,  (46  pmts”) 

E-VALUE  Code:  18601-S11004 


Solutions  that  fit.  Easy  as 


IK»LL 


Click  www.dell.com/bizsolutions 
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EDITORIAL 

John  Dix 

MCI  hangs  its 
Mire  on  part 
of  its  past 

MCls  focus  as  it  emerges  from  bankruptcy  can  be 
summed  up  in  two  letters:  I  and  P 
With  one  of  the  worlds  largest  IP  core  networks, 
the  technology  figures  prominently  in  everything  MCI  is 
doing.say  Joseph  Cook, senior  vice  president  of  network 
planning  and  engineering,  and  Jack  Wimmer,  vice  presi¬ 
dent  of  network  architecture  and  advanced  technology. 

“Our  goal  is  to  leverage  that  core,  to  drive  all  services  to 
it,”  Cook  says. 

The  company  has  committed  publicly  to  migrating  all 
voice  traffic  to  IP  by  2005.  As  part  of  that  effort  it  has  de¬ 
ployed  51  multi-service  access  gateways  that  initially  can 
.support  voice  over  IP,  frame  and  ATM.  Besides  making  it 
possible  to  introduce  new  integrated  IP-based  offerings, 
these  gateways  let  MCI  start  to  step  away  from  legacy  gear. 

The  conversion  “won’t  happen  overnight,”  Cook  says.“We 
won’t  .shut  down  hundreds  of  Class  3  switches  one  night. 
But  we’ll  never  buy  another  Class  3  or  Class  5  port.” 

Another  way  the  company  is  encouraging  migration  and 
leveraging  the  IP  backbone  is  with  its  Private  IP  service,  a 
Multi-protocol  Isabel  Switching  (MPLS)-based  IP  VPN  ser¬ 
vice  that  can  support  legacy  frame  and  ATM  locations. That 
lets  companies  begin  to  benefit  from  VPNs  without  having 
to  make  a  wholesale  cutover.  Cook  says  it  is  MCl’s  fastest- 
growing  .service. 

According  to  Wimmer,  who  is  responsible  for  looking  at 
technologies  a  couple  of  years  out,  the  next  frontier  is 
migrating  T-1  access  to  packet.“All  the  stuff  that  is  growing  is 
packet-based,” Wimmer  says.“We  need  to  get  away  from 
TDM  grooming  and  establish  native  packet  environments 
from  the  customer  into  the  cloud.” 

While  an  early  adopter  and  proponent  of  MPLS,  Wimmer 
says  MPl*S  isn’t  the  answer  for  this  next  step  because  of 
scaling  problems.  Although  he  wouldn’t  give  specifics,  he 
says  it  might  make  more  sense  to  use  tunnels  over  lOG 
metropolitan  Ethernet  to  reach  individual  cu-stomers  in 
multi-tenant  buildings. 

Finding  a  packet  an.swer  is  important  becau.se  it  could 
lower  costs  as  MCI  continues  to  build  out  its  local  access 
plant.Tlie  pres.sure  to  establish  more  direct  customer  links 
is  enormous  because  50  cents  out  of  every  dollar  goes  to 
access  today,  Ccxjk  says. 

In  fact,  finding  new  answers  to  these  and  other  issues 
seeras  to  Ije  higher  priority  than, say,  integrating  the  two 
frame  and  two  ATM  networks  that  MCI  runs  today“We 
looked  and  couldn’t  find  a  real  business  justification  to 
integrate  these  networks," Cook  says. 

Bankruptcy  problems  aside,  M(3  seems  to  have  set  a 
meaningful  technology  direction  that  could  benefit  cus¬ 
tomers  long  term. 

—  John  Dix 
Editor  in  chief 
jdix@nww.com 
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Spam  solutions 

In  his  Backspin  column  “Solutions  to  spam”  (www. 
nwfusion.com,  DocFinder  7823),  Mark  Gibbs  dis¬ 
cusses  challenge/response  systems.  It’s  important  to 
mention  that  these  systems  might  not  be  compatible 
with  many  electronic  transactions  that  we  all  use. 
Many  messages  are  server-produced  in  e-com¬ 
merce,  for  example,  and  challenge/response  systems 
will  eliminate  valid  messages. 

Jim  Becker 
New  Hope,  Ph. 

In  discussing  challenge/response  systems  in  his  col¬ 
umn  “Solutions  to  spam,”  Mark  Gibbs  writes:  “The 
problem  is  that  the  testing  technique  often  seems  to 
irritate  people  because  it’s  too  complex.”Well,  if  the 
message  isn’t  important  enough  for  the  sender  to 
answer  a  challenge,  then  it’s  not  important  enough 
for  me  to  read. 

At  home  1  use  ChoiceMail  One  from  DigiFbrtal  for 
spam  filtering.  ChoiceMail  uses  black/white  lists 
only  and  anyone  not  on  either  list  gets  an  invitation 
to  register  for  the  whitelist.  1  then  have  the  ability  to 
read  the  reason  for  the  request  and  accept  or  deny 
it.  Often  1  recognize  the  sender  and  don’t  need  to 
read  the  reason  they’ve  listed. 

In  the  months  I’ve  used  ChoiceMail,  I’ve  received 
several  inquiries  about  it  from  people  who  want  to 
use  it  and  no  real  complaints. 

Scott  Hutchinson 
Network  support  team 
Sheriff’s  Information  Systems 
Contra  Costa  County  Calif. 

Mark  Gibbs’“Solutions  to  spam”  is  a  nice,  positive  col¬ 
umn,  and  that’s  the  mb. There  are  a  lot  of  good  pack¬ 
ages  for  fighting  spam.  There  are  also  a  lot  of  well- 

E-mail  letters  to  jdix@nww.com  or  send  them  to  John  Dix,  editor  in 
chief.  Network  World.  118  Turnpike  Rood,  Southborough,  MA  01 772. 
Please  include  phone  number  and  address  for  verification. 


intentioned  but  flawed  ones,  and  a  lot  of  bad  ones. 

Products  that  require  a  human  response  have  two 
flaws.  First,  instead  of  reducing  traffic  on  your  mail 
server,  they  triple  it.  Your  mail  server  has  to  handle 
the  initial  message, your“test”  reply  and  the  response 
to  the  test,  just  to  deliver  the  e-mail.  Second,  your 
response  might  either  look  “spammy”  to  your  corre¬ 
spondent’s  mail  server,  or  your  correspondent  might 
simply  not  understand  your  message,  or  react  with 
open  hostility  to  it. 

We  have  a  completely  open,hackable  protocol  for 
e-mail,  so  of  course  it  will  be  hacked  in  the  current 
environment  enmeshing  the  Internet.  Cumbersome 
human  procedures  will  not  cure  this,  nor  will  ill- 
founded  and  poorly  drafted  laws. The  reason  “snail 
mail”  works  is  because  we  put  the  items  being 
mailed  into  an  envelope,  seal  it  and  can  tell  at  the 
other  end  that  it  has  arrived  intact.  When  we  fix  the 
problem  of  actually  knowing  from  whom  the  e-mail 
came  and  that  it  arrived  without  modification,  we’ll 
have  an  e-mail  system  that  works.  Short  of  that,  very 
little  is  going  to  help. 


The  Dilbert  factor 


Wes  Ffeters 
Core  team  member 
The  FreeBSD  Project 
San  Diego 


Regarding  Howard  Anderson’s  column, “The  gospel 
according  to  Dilbert”  (DocFinder  7824):  Having 
worked  in  several  industries.  I’m  not  sure  that  this  is 
actually  the  nuttiest.  It  ju.st  has  Scott  Adams  to  call 
attention  to  it. 

Also,  I  don’t  think  IT  professionals  have  anything  to 
do  with  it  being  nutty.  I  strongly  suspect  that  the  real 
problems  with  all  our  industries  today  have  more  to 
do  with  the  horde  of  MBAs  spawned  in  the  1980s 
who  are  now  sporting  pointy  hair  as  they  make  the 
decisions  Anderson  refers  to  in  his  column. 

David  Easter 

Fallston,Md. 


More  online!  www.nwfusion.com  Find  out  wtiat  readers  are  s^ing  about  these  and  other  topics.  DocFinder  7822 
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BOnOM  LINE 

Joel  Snyder 

Two  years  ago  this  month  1  wrote  a  col¬ 
umn  called  “Learning  lessons  from 
Code  Red”  (www.nwfusion.com,  Doc- 
Finder:  7742).  Code  Red  had  hit  hard,  taking 
over  servers  all  over  the  Internet.  It’s  still  there 
—  we  get  dozens  of  Code  Red  attempts  every 
day  from  a  worm  that’s  2  years  old. 

Two  worms  that  hit  this  summer,  W32/Blaster  (also  known  as  W32/- 
Welchia,W32/Nachi  and  Lovsan)  and  SoBig  (also  known  as  SoBig.F) 
spread  exactly  the  same  way  Microsoft  published  bulletins,  but  peo¬ 
ple  ignored  them.  Patches  were  issued,  but  no  one  applied  them. The 
worms  came  in  through  firewalls  that  shouldn’t  have  let  them  in.  In¬ 
fected  systems  continued  spreading  the  worms  because  we  didn’t 
have  adequate  tools  to  contain  them.Two  years  after  Code  Red,  there 
are  still  fundamental  problems  in  the  way  we  manage  and  secure  sys¬ 
tems  that  make  us  vulnerable  to  this  kind  of  attack. 

The  first  problem  concerns  ISPs.  Worms  spread  like  this  partially  be¬ 
cause  of  the  widespread  availability  of  broadband  Internet,  specifically 
unfirewalled  broadband  Internet.  People  want  to  learn  at  home, so  they 
bring  up  a  Windows  server.  Why  bother  with  a  firewall;  it’s  just  a  test  box, 
right?  ISPs  traditionally  have  sold  unfiltered  bits  to  their  customers. 

At  the  enterprise  level,  we  could  count  on  firewalls.  At  the  residential 
level,  how  much  damage  could  a  28.8K  bit/sec  modem  do?  During  the 
transition  to  broadband,  ISPs  have  not  changed  their  model.They  insist 
on  selling  high-speed  connections  at  rock-bottom  prices,  which  is  great 


When  will  we  ever  learn? 


for  consumers  —  until  the  irresponsibility  of  ISPs  in  providing  ade¬ 
quate  security  for  their  customers  causes  the  whole  Internet  to  fall  to 
its  knees.  ISPs  need  to  re-evaluate  their  policies  on  open  access  to  cus¬ 
tomers,  especially  residential  broadband  customers  who  cannot  be 
expected  to  firewall  their  own  systems  properly 

The  second  problem  involves  tools.  Although  network  managers  gen¬ 
erally  keep  their  houses  in  order,  it’s  not  because  they  know  what’s 
going  on;  it’s  because  the  system  is  so  over-engineered  that  they  don’t 
have  to  know.  Recent  research  shows  an  enormous  amount  of  Internet 
traffic  is  plain  garbage:  packets  that  should  never  have  gotten  where 
they  are,  or  even  been  allowed  to  leave  their  original  network. 

The  bottom  line  is  that  we  generally  don’t  have  a  good  way  to  say 
who  is  doing  what  on  our  networks. There  are  lots  of  tools  out  there, 
from  URL  watchers  to  intrusion-detection  systems  to  IP-layer  flow 
tools. Even  most  Cisco  routers  have  flow-analysis  tools  built  in. But  few 
of  us  have  installed  them,  and  fewer  still  know  how  to  use  them. 

Just  answering  the  question  “Who  on  my  network  is  infected?”  is  not 
easy  even  though  these  systems  will  stand  out  like  a  sore  thumb. 
Network  managers  need  to  take  a  closer  inventory  of  their  networks 
and  add  tools  that  will  help  them  monitor  what’s  going  on  with  all  those 
bits. Without  data,  we’re  flying  blind. 


Two  years  after 
Code  Red,  there 
are  still  funda¬ 
mental  problems 
in  the  way  we 
manage  and 
secure  systems. 


Snyder,  a  Network  World  Test  Alliance  partner,  is  a  senior  partner  at 
Opus  One  in  Tucson,  Ariz.  He  can  be  reached  at  Joel.Snyder@ 
opusl.com. 


ABOVE  THE  CLOUD 

James  Kobielus 


Shakeout  looms  In  Web  services  mgmt 


f  eb  services  management  is  one  of  the 
most  innovative  sectors  in  today’s  IT 
industry.  Despite  the  general  eco¬ 
nomic  slump,  dozens  of  start-ups  have  ven¬ 
tured  into  the  WSM  market  over  the  past  few 
years.  Consequently  enterprise  customers  can 
choose  from  many  sophisticated  tools  for 
managing  their  complex  Web  services  middleware  environments. 

WSM  is  no  passing  fad.  WSM  tools  address  a  growing  need  in  today’s 
Web-oriented  e-business  environment.  They  help  companies  ensure 
that  the  performance,  reliability  availability  and  security  of  Web  services 
environments  continue  to  comply  with  service-level  agreements  and 
quality-of-service  requirements.  By  contrast,  traditional  IT  management 
tools  can’t  monitor  the  end-to-end  performance,  availability  reliability 
and  security  of  Web  services  environments.  Typically  organizations 
deploy  management  tools  associated  with  particular  application,  serv¬ 
er  and  network  environments.  This  explains  why  companies  turn  to 
WSM  for  a  holistic  view  of  service  performance,  as  well  as  invest  in  en¬ 
terprise  management  frameworks  from  Computer  Associates,  HR  IBM 
Tivoli  and  other  strategic  vendors. 

But  today’s  WSM  market  is  overcrowded  and  due  for  a  serious  shake¬ 
out.  Start-ups  are  having  a  tough  time  establishing  WSM  as  a  separate 
market  from  IT  management  tools.  WSM  tools  don’t  eliminate  the  need 
for  traditional  management  tools  that  focus  on  particular  applications, 
systems  and  network  environments. You  can’t  optimize  Web  services  if 
you  don’t  have  the  tools  for  viewing  and  fixing  problems  that  originate 
in  the  underlying  infrastructure. 

Sensing  an  opportunity  to  strengthen  their  competitive  positions, 
management  vendors  are  adding  WSM  features  to  their  offerings. 
Others  are  bootstrapping  themselves  into  the  WSM  market  through 
strategic  acquisitions. We  see  evidence  for  the  latter  trend  in  CAs  recent 
acquisition  of  Adjoin  and  HP’s  announcement  of  its  intention  to  buy 
Talking  Blocks.  Over  the  next  several  years,  traditional  IT  management 
vendors  will  dominate  the  WSM  market  as  they  leverage  their  estab¬ 
lished  customer  bases  and  product  families.  Likewise,  vendors  of  appli¬ 


cation  servers,  integration  brokers,  operating  environments  and  other 
Web  services  platforms  will  embed  WSM  features  in  their  offerings. 

As  we  can  see  with  Adjoin  and  Talking  Blocks,  some  WSM  start-ups 
are  merging  or  partnering  with  established  tool  and  platform  vendors. 
They  realize  that  most  users  would  prefer  that  this  functionality  be  inte¬ 
grated  into  enterprise  management  environments.  It  could  be  only  a 
matter  of  time  before  many  of  the  other  WSM  pioneers  find  their 
respective  suitors. 

Today’s  WSM  start-ups  will  need  to  aggressively  partner,  specialize  and 
diversify  if  they  want  to  survive  the  coming  industry  consolidation. 
Specialization  will  lead  to  profitability  for  some,  and  the  WSM  market 
will  continue  to  splinter.  Some  WSM  start-ups  are  positioning  their  prod¬ 
ucts  as  special-purpose  solutions  such  as  Simple  Object  Access  Pro¬ 
tocol  firewalls,  content-aware  SOAP  routers  and  XML  accelerators. 

Many  of  these  special-purpose  WSM  tools  will  blur  into  the  estab¬ 
lished  product  segments  with  which  they  have  the  greatest  affinities. 
For  example,  companies  are  beginning  to  consider  SOAP  firewalls  from 
WSM  vendors  such  as  Forum  Systems,  Reactivity  Vordel  and  WestBridge 
as  complementary  to  traditional  IP  firewalls,  Web  access  management 
products  and  intrusion-detection  systems.  Likewise,  organizations  are 
beginning  to  consider  how  best  to  deploy  the  Layer  7  routing  features 
of  some  WSM  tools  from  vendors  such  as  Actional,  AmberFbint  and 
Blue  Titan  in  conjunction  with  traditional  Layer  3  devices  such  as  IP 
routers,  network  load  balancers  and  application  switches. 

WSM  is  an  exciting, dynamic  market.  But  it’s  also  a  battlefield  in  which 
many  pioneers  will  perish,  and  established  tool  and  platform  vendors 
will  consolidate.  Enterprise  customers  will  find  many  tactical  WSM 
tools  for  monitoring,  security  performance  optimization  and  other 
functions.  But  they  should  think  twice  about  making  strategic  commit¬ 
ments  to  WSM  vendors  until  the  market  has  matured  and  the  ultimate 
victors  are  clear. 

Kobielus  is  a  senior  analyst  with  Burton  Group,  an  IT  advisory  service 
that  provides  in-depth  technology  analysis  for  network  planners.  He  can 
be  reached  at  (703)  924-6224  or  jkobielus@burtongroup.com. 


Today's  WSM 
start-ups  will 
need  to  a^res- 
sively  partner, 
specialize  and 
diversify  if  they 
want  to  survive 
the  coming  indus¬ 
try  consoiidation. 
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AVAVA 

a  higher  plane 
of  communication 


AS  YOUR  COMMUNICATION  NETWORK  gets  more 

complicated  —  dare  we  say,  converged?  —  you  need  to 

toughen  your  defense.  Meet  the  complete  security  solution 

from  Avaya.  Our  mantra:  the  pucks  stop  here.  Count  on 

Avaya  Security  Solutions  to  protect  your  entire  network, 

no  matter  where  you  are  on  the  path  to  IP  telephony.  We 

take  a  holistic  approach  to  security  with  the  multi-vendor 

expertise  of  Avaya  Global  Services.  Our  industry-certified 

consultants  methodically  assess  all  your  communication 

devices,  policies  and  vulnerabilities,  inside  and  out  (no 

sneak  shots  around  the  post).  In  the  state  of  Avaya,  our 

services,  systems,  applications  and  products  assure  that 

your  converged  network  is  secure  by  design.  See  why  it’s 

no  contest  when  Avaya  security  is  minding  your  net  at 

avaya.com/secure.  Or  call  866-GO  AVAYA  today. 

IP  Telephony 

Contact  Centers 

Unified  Communication  Services 

With  Avaya 


MINDING  YOUR  NET, 

your  voice,  data,  even  your  converged  network  can 

SAFE  AND  SECURE. 
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An  art  therapist  or  handwriting  expert 
Wr-’^  1  tell  all  sorts  of  things  about  peo- 

pie’s  psyches  from  their  doodles.  Such 
experts  might  interpret  a  plump  chicken 
scrawled  in  the  page  margin  as  a  sign  of 
dieting,  or  a  pile  of  books  scribbled  into  the  upper 
corner  as  a  signal  of  being  overwhelmed  and  feeling 


LOOK  AT  TTi^  HOT 
VYXHO  f'OK  YOUK  ATT^NXXOH. 


Deciphering  doodles  isn’t  easy  even  the  experts 
admit,  but  they  could  be  right  —  doodles  might 
express  subconscious  desires,  obsessions  or  con¬ 
cerns.  As  expert  graphologist  Anna  Koren  explains  on 
The  Graphology  Center’s  Web  site  (www.annakoren. 
com),  idly  scribbling  away  appears  to  only  be  a  par¬ 
tially  conscious  process. Yet,  the  doodler  never 
appears  surprised  by  what  appears  on  page. 

So  what  might  the  typical  network  executive  be  sub¬ 
consciously  drawing  these  days?  I’ll  take  a  guess,and 
a  stab  at  some  analysis. 

•  Words  such  as“spam,”“storage,”“utility  computing” 
and  “wireless”  repeated  over  and  over,shaded-in  or 
otherwise  decorated;  Anxiety  tension  and  self-doubt 
about  hugely  important  technology  choices. 

•  Character  drawings  with  bulging  brains:  An  obses¬ 
sion  with  making  your  network  and  data  centers 

more  intelligent  and 
autonomous. 

•  Dollar  or 
piggy  banks:  Concern 
about  what  buzzy 
technologies  to  bring 
into  your  production 
network  in  2004, 
despite  your  limited 
IT  budget. 

•  Repetitive 

curlicues  or  other 
repeated  line  draw¬ 
ings:  Determination  to 
get  the  job  done, 
efficiently  ^ 

•  An  airplane  mM 

or  boat:  Keep- 

ing  track  of  all 
these  network  Sw 

UAVIU  KlfcUKS  V 

buzzwords, 

budgets  and  projects  are  driving  you  crazy  You  ^ 

need  a  vacation!  I 

If  this  sounds  like  you,  relax.  Our  annual 
Buzz  Issue  describes  just  what  * 

you  need  to  know  about  the 
latest  technologies  —  and 
promises  to  turn  those  doo- 
dies 


48  Outwitting  spammers 

Clever,  self-learning  methods  such  as  Bayesian  filters  and  neural  11 
networks  are  the  latest  anti-spam  buzz.  But  some  fall  frustratingly  ' 
short  for  corporate  use. 

52  Security  made  simple 

Security  appliances  are  the  latest  rage,  thanks  to  their  easy 
deployment  and  high  reliability. 

54  FTTP  fear  factor  _ 

Some  worry  that  RBOC  Fiber-to-the-Premises  plans  provide 

more  hot  air  than  substantive  value.  { 

57  Storage  gets  smarter  \  \ 

Intelligence  is  moving  to  the  storage  fabric,  but  smart  storage  J. 

like  this  might  only  make  sense  for  the  biggest,  most  complex  SANs. 

60  Real-time  collaboration 

—  for  real!  . 

Instant  messaging  and  Web  conferences  are  turning  real-time  « 

collaboration  into  an  enterprise  staple.  ^ 

63  Resurrecting  the  distributed  9 
app  model 

The  service-oriented  architecture  promises  to  succeed  where  others  have 
failed  in  building  a  network-friendly,  reusable  app  architecture. 

67  Ultimate  mobility 

Wi-Fi  is  the  rage  today,  but  the  real  mobile  /Hix  C  y  tv 

story  lies  in  the  convergence  of  multiple  'jY~/7yi 

-  network  types,  application  persistence 

^  multi-modal  devices.  y 

71  To  data  center  utopia _ 

Utility  computing  initiatives  dominate  product  road  maps,  but 
so  far  no  one  vendor  has  delivered  fully  on  the  technology’s 
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promise. 


73  Raising  an  RFID  \Vv 
ruckus 

Radio  frequency  identification  tags  might  make  .  _ 

^  supply  chains  infinitely  more  manageable,  but 
I  the  privacy  flap  needs  settling  first. 

74  Signature  Sign-off 
Industry  murmurs 

What  emerging  technologies  are  people  start 
ing  to  buzz  over?  We  take  a  look  at  three. 
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Issue,  a  guide  to  the 
latest  technologies  for 


and  challenges  of 
building  an  extended 


corporate  Infrastruc 


John  Studdard,  CIO  at  Lydian  Trust,  says 


ture,  coming  Nov.  10. 


SOA  is  a  real  nifty  marketing  term. 


Michelle  Butler, 
storage  manager, 
is  in  favor  of  intelli¬ 
gence  in  the  switch 
fabric,  but  only  if  her 
vendors  support  it. 
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—  By  John  McKniqht 

As  e-mail  has  evolved  from  an  alternative  communi¬ 
cations  medium  to  an  indispensable  business  tool, 
enter]  )rise  messaging  applications  such  as  Microsoft 
Ex(?hange  have  been  appointed  mission-critical  status 
in  most  IT  organizations.  With  that  status  comes  the 
need  for  high-availability  solutions  characteristic  of 
other  core  enter]) rise  applications. 

I  lowever,  keeping  Exchange  available  to  all  users  at 
all  times  with  all  user  data  intact  is  a  formidable  chal¬ 
lenge  for  IT.  From  the  Sobig.F  \drus  to  the  user  who 

insists  on  e-mailing  a  5-minute  “Terry  _ 

Tate;  Office  Linebacker”  video  clip  to 
300  of  his  closest  co-workers,  there  is 
no  shortage  of  management  and  avail¬ 
ability  challenges  awaiting  today’s 
Exchange  administrator.  What’s 
more,  in  a  time  when  most  IT  budgets 
are  essentially  flat,  IT  needs  to  deliver 
a  reliable  Exchange  solution  while 
containing  costs. 

lm])ossible?  Welt,  no  one  is  going 
to  ])retend  that  it’s  easy.  However,  by 
focusing  on  three  challenges  that 
highlight  the  connection  between 


Keeping 
Exchange 
available  to  all 
users  at  all  times 
with  all  user 
data  intact  is  a 
formidable 
challenge  for  IT 


or  MP3  jukebox.  Furthermore,  recovery  require¬ 
ments  are  becoming  more  and  more  complex.  For 
example,  IT  must  increasingly  have  the  ability  to 
restore  a  single  message,  not  only  for  business  pur¬ 
poses,  but  also  —  and  more  and  more  frequently  — 
for  when  attorneys  or  govenunent  regulators  are 
seeking  evidence  for  a  civil  or  criminal  investiga¬ 
tion.  Which  brings  me  to: 

Complying  with  e-mail  retention  and  retrieval 
regulations.  Regulatory  compliance  adds  another 
wrinkle  to  the  already  complex  world  of  Exchange. 

_  In  the  financial  services  industry  for 

example,  the  United  States  Securities 
and  Exchange  Commission  (SEC)  has 
made  it  clear  that  under  Rule  17a-4  of 
the  Securities  Exchange  Act,  bro¬ 
ker/dealer  e-mails  are  considered 
business  records  that  are  subject  to 
stringent  retention  and  retrieval 
requirements.  This  creates  a  number 
of  requirements  for  additional  hard¬ 
ware  and  software  solutions  that  help 
users  easily  store,  index,  search  for, 
and  retrieve  individual  e-mail  mes¬ 
sages.  Industry-specific  regulations 


Exchange  and  its  underlying  storage  hardware  and 
software  infrastructure,  IT  organizations  can  take 
steps  that  will  ultimately  reduce  costs,  increase  avail¬ 
ability,  and  improve  end-user  service  levels  —  but  first 
the  bad  news. 

A  Triple-Header  of  Exchange  Headaches 

kYom  an  application  infrastructure  point  of  view, 
the  following  i.ssues  are  among  the  most  vexing  prob¬ 
lems  for  today’s  Exchange  administrators: 


aren’t  the  only  reason  why  you  should  get  your  e- 
mail  archiving  house  in  order,  however.  Consider 
the  recent  case  of  Zubulake  vs.  UBS  Warburg,  in 
which  the  U.S.  District  Court  of  New  York  ruled  that 
the  party  producing  requested  information  — 
whether  paper  or  electronic  —  is  responsible  for  the 
majority  of  the  cost  of  the  data  discovery  process. 
This  ruling  further  emphasizes  the  need  for  all  com¬ 
panies  to  have  an  efficient  and  cost-effective  way  to 
archive  and  retrieve  e-mail  messages. 


•  Managing  the  growth  of  Exchange  servers  and 
associated  storage.  Many  IT  shops  are  still  on 
older  versions  of  Exchange  that  su])])ort  a  limited 
number  of  users  per  serwr.  For  many  of  these  com- 
])anies,  this  has  led  to  an  explosion  in  the  number  of 
servers  required  to  su])port  the  Exchange  imple¬ 
mentation.  From  a  storage  perspective,  many  of 
tJiese  seiv'ers  have  been  implemented  with  intenuil 
or  direct -attac’hed  storage,  resulting  in  stranded 
capacity  that  cannot  be  leveraged  by  other  servers 
iU)d/or  applications.  Unless  IT  takes  action,  the 
cx)sLs  of  ])urchasing  and  managing  an  ever-growing 
number  of  Exc  hange  servers  —  j)lus  t  he  direct  and 
indirect  costs  of  inefficiently  utilized  storage  — 
threaten  to  spiral  out  of  control. 

•  Protecting  Exchange  without  affecting  end- 
user  performance  or  availability.  Think  about  it: 
W'hen  e-mail  goc\s  down,  everyone  in  the  company 
knows  it.  WTiether  at  their  desk  at  1  ])m  or  in  their 
]);\j;unas  at  1  am,  if  there’s  one  application  to  which 
users  demand  continuous  access,  it’s  e-mail. 
MorcHJver,  if  lui  outage  does  occur,  users  exjjc'ct  a 
cjuick  rec-overy  with  little  or  no  data  loss.  Yet  the 
di-ck  is  stac  ked  against  IT  delicering  both  effc'ctive 
data  protection  and  nonsto])  availability.  Why? 
DoublcMligit  data  growth  extends  backu])  times  cuul 
.scjueezc's  data  juotection  windows;  server  prolifera¬ 
tion  adds  to  backu])  cost  ;u»d  comjrlexity;  and  all  of 
this  is  compounded  by  usc'rs  that  j)ay  no  attention  to 
coiT^Hirate  c^inml  ]X)lic*ic's,  turning  their  Exc-hange 
inlH)x  into  theui  ow  n  jrersonal  j)rt‘st*ntation  archive 


Exchange  Shops  Must  Focus  on  Three  Key  Best  Practices 

To  address  these  challenges.  Exchange  administra¬ 
tors  should  supplement  their  playbook  with  best  prac¬ 
tices  in  three  key  areas:  consolidation,  continuous 
availability,  and  compliance. 

•  Consolidation.  If  you  haven’t  done  so  already,  you 
i  should  seriously  consider  migrating  from  Exchange 
5.5  to  Exchange  2003,  not  only  for  the  additional  fea¬ 
tures,  but  also  because  c-ustomers  with  newer  ver¬ 
sions  of  Exchange  can  realize  significant  capital  and 
operational  efficiencies  through  server  and  storage 
consolidation.  Since  Exchange  2003  supports  3,000- 
5,000  users  per  server,  compared  to  1,000-2,000  users 
for  Exchange  5.5,  IT  c-an  reduce  its  overall  nuniber  of 
e-mail  servers.  This  not.  only  results  in  capital  and 
I  operational  savings  from  a  server  ])rocurement  and 
management  perspective,  but  also  jrrovides  the 
opportunity  to  take  internal  or  direct-attached  stor¬ 
age  and  consolidate  that  storage  on  a  SAN-  or  NAS- 
based  solution.  Consolidating  and  networking  your 
Exchange  storage  eimromnent  jrrovides  three  key 
benefits.  First,  you  can  improve  storage  utilization 
by  leveraging  previonsly  unu-sed  capacity  where  and 
when  it  Ls  netnled.  Stn-ond,  you  will  have  hiid  the 
'  groundwork  for  a  more  effic-ient  storage  manage¬ 
ment  strategy,  since  managing  large  ])ools  of  storage 
I  capacity  witli  storage  resource  management  soft- 
I  ware  is  much  more  cost-effin-tive  than  managing 
many  small  Lshuuis  of  infonuation  with  multiple 
!  ttx)ls.  Third,  consolidation  of  your  Exchange  storage 


also  allows  you  to  do  centndized  backup  of  your 
entire  Exchange  environment,  instead  of  backing  up 
each  serv'er  to  separate  tape  drives. 

•  Continuous  Availability.  Given  its  mission-critical 
status,  the  frequent  backup  of  Exchange  is  a  prima¬ 
ry  focus  of  any  data  protection  strategy.  However, 
backing  up  without  impacting  end-user  service  lev¬ 
els  is  a  tremendous  challenge  for  Exchange  admin¬ 
istrators.  The  good  news  is  that  number  of  vendors 
now  offer  advanced  Exchange-specific  backup  and 
recovery  products  that  allow  users  to  effectively 
backup  and  restore  Exchange  servers  while  they 
are  on-line  and  in  use.  For  example,  some  of  these 
new  products  leverage  built-in  snapshot  technology, 
enabling  you  to  conduct  backups  to  and  recoveries 
from  the  Exchange  snapshot.  This  results  in  virtual¬ 
ly  no  impact  to  application  availability  and  also 
reduces  backup  and  (especially)  recovery  times  by 
utilizing  high-speed  disk  instead  of  tape.  In  addition, 
several  products  can  now  quickly  and  reliably 
restore  Exchange  environments  at  a  very  granular 

—  i.e.  mailbox,  folder,  or  even  individual  message 

—  level,  enabling  customers  to  meet  new  e-mail 
restoration  requirements. 

•  Compliance.  As  e-mail  is  increasingly  sought  in 
regulatory  investigations,  lawsuits,  and  other  legal 
proceedings,  the  shortcomings  of  many  traditional 
backup  and  recovery  solutions  become  evident,  par¬ 
ticularly  the  ability  to  quickly  and  cost-effectively 
locate  and  restore  messages.  Fortunately,  a  mmiber 
of  vendors  now  offer  e-mail  archiving  products  that 
capture  all  incoming  and  outgoing  messages  and 
attachments  on  a  separate  server  for  easy  indexing, 
search,  and  retrieval.  There  can  be  significant  finan¬ 
cial  benefits  to  implementing  these  solutions.  Not 
only  can  they  help  avoid  fines  suc-h  as  the  $100,000 
penalty  charged  to  securities  firm  SG  Cowen  for 
failure  to  produce  e-mail  records  in  court,  they  can 
also  significantly  reduce  the  overall  costs  associat¬ 
ed  with  retrieving  and  producing  e-mail  records. 
Again,  consider  that  in  the  Zubulake  vs.  UBS 
Warburg  case,  it  was  estimated  that  it  would  cost 
UBS  more  than  $270,000  in  IT  consulting  and  legal 
fees  to  restore  a  relatively  small  number  of  e-mails 
from  some  77  different  backup  ta])es! 

Summary 

Tlie  new  realities  of  enter})rise  mes.saging  environ¬ 
ments  —  unrelenting  growth,  nonstoj)  availability 
requirements,  and  com])liance  with  record  retention 
regulations  —  aren’t  going  away  any  time  soon. 
However,  IT  can  take  action  today  to  address  these 
challenges:  Consolidating  Exchange  server  and  stor¬ 
age  infrastnictures,  ensuring  continuous  availability 
through  new  backup  and  restore  technologies,  and 
ensuring  com])liance  with  e-mail  retention  and 
retrieval  regulations  will  lead  to  imjirovetl  service  lev¬ 
els,  haj)])ier  users,  and  lower  ca{)ital  and  operational 
expenses  -  not  to  mention  increased  peace  of  mind  for 
your  CEG,  CkX),  and  General  Counsel. 

For  more  information  on 
Network  Storage  Solutions  and  the 
Enterprise  Storage  Group,  go  to: 
www.enterprisestoragegroup.com 
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r-letter  word  of  the  virtual  world,  seems  to 
be  on  everyone’s  lips  these  days,  from  rank-and- 
file  workers  to  Congress  and  the  British 
Parliament.  The  buzz  occurs  with  good  reason: 
Spam  has  leapt  from  a  minor,  annoying  byprod¬ 
uct  of  e-mail  to  an  epic  business  problem. 
Unsolicited  e-mails  are  growing  at  a  rate  of  5% 
per  month,  according  to  a  Kessler  International 
survey.  That  means  thousands  of  unwanted 
e-mails  per  week, often  totaling  75%  of  the  mes¬ 
sages  an  enterprise  e-mail  gateway  must  process 
—  while  clogging  downstream  wires  and 
servers,  users  say 

Spam  on  that  scale  also  sucks  up  employee 
time;  Nucleus  Research  reports  that  nuisance 
e-mail  costs  $874  per  person  annually  in  lost 

productivity.  And 


Questions  for  your 
anti-spam  tool  vendors 

Does  the  filter  run  on  the  gateway  or  the  client? 


♦  How  does  your  product  adapt  to  the  new  ways 
spammers  have  devised  to  foil  filters? 


•  If  updates  are  required,  how  quickly  are  they 
made  available  ? 


•  How  does  the  product  protect  against  false  pos¬ 
itives? 


•  How  can  the  product’s  spam  analysis 
be  adjusted  if  it  labels  too  many  false 
negatives? 


•What  kind  of  spam  analysis  tools  does  it 
include? 


Clever,  self-learning  methods 
such  as  Bayesian  filters  and 
neural  networks  are  the 
latest  anti-spam  buzz. 

But  some  fall  frustratingly 
short  for  corporate  use. 


BY  JULIE  BORT 


with  some  mes¬ 
sages  so  obscene 
as  to  make  a  mer¬ 
chant  marine 
blush,  much  of  the 
spam  content  is 
inappropriate  for  a 
business  environ¬ 
ment,  if  not  out¬ 
right  illegal. 

Government 
intervention  has 
been  discussed 
considerably  as  a 
solution,  but  net¬ 
work  professionals 
aren’t  holding  out 
for  relief  from  legis¬ 
lation.  Its  effective¬ 
ness  will  be  iffy  at 
best  (see  sidebar, 
page  48).  For  the 
time  being,  exter¬ 
minating  the  spam 


menace  will  remain  the  task  of  the  network 
team.  That’s  easier  said  than  done.  E-mail  mar¬ 
keters  constantly  find  ways  to  thwart  existing 
email  filters.  Anti-spam  software  vendors,  in 
turn,  create  new  filters  intended  to  spot  spam¬ 


mer’s  latest  tricks.  Not  only  must  network  execu¬ 
tives  frequently  update  software  to  get  the  latest 
filters,  but  the  more  filtering  they  switch  on,  the 
higher  the  chance  that  legitimate  e-mail  gets 
mislabeled  and  deleted  as  spam. 

The  latest  crop  of  filters  promises  to  stop  this 
yo-yo  cycle.  These  filters  are  based  on  “self¬ 
learning”  or  “machine-learning”  technologies 
that  attempt  to  adapt  automatically  to  spam¬ 
mers’  new  tricks  while  protecting  legitimate 
e-mail.  Among  machine-learning  technologies 
in  commercial  spam  filters,  Bayesian  filtering 
and  neural  networks  are  the  most  talked 
about,  with  Bayesian  filtering  generating  a 
downright  roar.  In  the  past  few  months,  this 
type  of  filter  has  been  implemented  in  a  grow¬ 
ing  number  of  anti-spam  products,  ranging 
from  open  source  product  SpamAssassin  to  an 
enterprise-class  spam-detection  module  from 
start-up  ProofPoint. 

Users  who  have  tried  Bayesian  filtering  recom¬ 
mend  it. 

“1  implemented  SpamAssassin  before  Bayes¬ 
ian  was  part  of  it,  and  it  worked  pretty  well,  but 
with  Bayesian,  it  works  much  better.  Bayesian  is 
essential  in  this  day  and  age,”  says  John  Stewart, 
senior  technical  specialist  for  Artesyn  Com¬ 
munication  Products  in  Madison,  Wis. 

But,  unlike  more  established  anti-spam  tech¬ 
nologies  like  dictionary  scans,  blacklisting  and 
heuristics,  today’s  buzzy  machine-learning  fil¬ 
ters  are  not  always  a  straightforward  affair  for  a 
corporation.  (See  anti-spam  glossary,  page  47.) 


Spam  or  not-spam 

Bayesian  filters  are  based  on  an  algorithm  for 
classifying  documents,  says  Paul  Graham,  an 
independent  programmer  who  created  an 


early,  open  source  Bayesian  spam  filter. 
Because  all  spammers  must  somehow  state 
their  message  —  despite  any  tricks  they  use  to^ 
fake  out  filters  —  Bayesian’s  techniques  for 
intelligently  classifying  content  have  proven  ' 
effective. 

First,  the  user  divides  e-mail  into  two  piles, 
spam  and  not-spam,  from  which  the  filter  trains 
itself.  The  filter  analyzes  every  word  in  each 
e-mail  and  determines  how  frequently  the 
word  occurs  in  the  spam  pile  vs.  the  not-spam 
pile.  For  instance,  when  the  filter  finds  “V-l-A-G- 
R-A”  in  spam  but  never  in  not-spam, VIAGRA 
earns  a  100%  probability  of  being  a  spam 
“word.”  Because  “the”  occurs  equally  in  spam 
and  not-spam,  it  gains  a  neutral  50%,  white“ 
innocent  words  such  as  RFP  would  occur  in 
not-spam  but  rarely  (if  ever)  in  spam,  giving  it, 
for  instance,  a  99%  probability  of  being  a  not- 
spam  word. 

When  an  e-mail  arrives  at  the  trained 
Bayesian  filter,  the  filter  looks  for  the  15  words 
with  the  highest  probabilities  —  “either  very 
guilty  or  very  innocent,”  Graham  says  —  and 
uses  them  to  calculate  the  message’s  overall 
spam  probability.  Tricks  like  replacing  the  “i” 
with  the  numeral  1  in  VIAGRA  might  confound 
the  simple  dictionary  filter,  t>ut  they  help  the 
Bayesian  filter. 

“If  spammers  say  Viagra  ...  my  God,  is  that 
guilty  —  even  more  than  Viagra.  Conceivably, 
people  might  be  writing  each  other  e-mails 
about  Viagra,  but  they  are  not  going  to  be  writ¬ 
ing  about  V-l-a-g-r-a,”  Graham  says. 

In  most  products,  Bayesian  filtering  is  only 
one  of  several  tests  in  a  heuristics  process  that 
determines  the  e-mail’s  overall  spam  probabil¬ 
ity.  Once  that’s  done,  the  anti-spam  tool  embeds 
a  spam  rating  in  the  message  header  and  then 
typically  sends  the  e-mail  on  to  the  client’s 
e-mail  software,  which  uses  the  tag  to  sort  or 
delete  the  message,  per  user  instructions. 

Should  the  filter  err,  calling  a  legitimate 
e-mail  spam  or  questionable  (the  false  posi¬ 
tive)  or  tagging  spam  as  legitimate  (the  false 
negative),  the  end  user  would  send  the  falsely 
labeled  message  to  the  correct  folder. The  filter 
uses  these  folders  to  retrain  itself  daily  or  per 
user-specified  frequency.  Regular  training 
assures  that  the  filter  automatically  learns  the 
latest  spammer  tricks  (such  as  garbage  charac- 


literally  changed  my  life  ...  there's  jus! 

spam  than  to  have  a  filter."  John  Stewart,  senior  technical  specialist,  Artes^l 
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ters  in  the  subject  line  and  spaces  between  let¬ 
ters).  Filtering  is  also  personalized. The  banker 
can  accept  mortgage  offers  from  the  competi¬ 
tion  as  legitimate  —  while  the  office  manager 
deletes  them  as  spam. 

Because  Bayesian  filtering  was  designed  for 
the  client,  it  is  most  commonly  a  feature  of  con¬ 
sumer  products,  with  a  price  of  about  $30  per 
license. Vendors,  no  doubt,  would  be  willing  to 
negotiate  less-expensive,  volume  prices  for  en¬ 
terprise  deployments.  Many  Bayesian  filters 
also  are  available  for  free  as  open  source  tools. 

Clogging  the  gateway 

While  Bayesian  filtering’s  client-side  bent  is 
an  elegant  way  to  stop  spam  from  sponging  up 
productivity,  its  drawback  is  that  it  introduces 
major  client-management  headaches  when 
used  on  an  enterprise  scale.That  calls  for  some 
creativity. 

Artesyn’s  Stewart  customized  SpamAssassin 
so  that  it  will  filter  e-mail  at  the  mail  gateway, 
not  the  client. Typically,  SpamAssassin  is  a  Unix 
product  intended  to  run  after  the  mail  is  deliv¬ 
ered  —  with  a  Unix  email  client  or  on  the  box 
that  holds  the  point  of  presence  and  Internet 
Message  Access  Protocol  accounts,  Stewart 
says.  He  modified  SpamAssassin  so  that  mail 
can  flow  through  it.  SpamAssassin  runs  on  a 
server  he  calls  the  “Spaminator,”  along  with 
AMaVlS-new,an  open  source  anti-virus  scanner 
that  includes  a  call  to  SpamAssassin,  and 
FbstFix,  a  Unix  mail  program.  Custom  PERL 
scripts  handle  various  e-mail  management 
tasks. 

When  an  e-mail  arrives,  it  is  scanned  for 
viruses  and  trotted  through  SpamAssassin ’s 
heuristics  tests,  which  includes  Bayesian  filter¬ 
ing  (in  Versions  2.5  or  later).  SpamAssassin 
tags  the  email  with  a  spam  level  and  sends  it 
onto  the  company’s  Microsoft  Exchange 
servers,  which  deliver  it  into  Outlook  clients.  If 


no  other  woy  to  deal 

Communication  Products 


with 


configured  to  do  so.  Outlook  sorts  the  mes¬ 
sages  into  various  folders  according  to  their 
spam  level. 

Stewart  lets  employees  opt  into  the  anti-spam 
program.  On  the  intranet,  he  posted  detailed 
instructions  on  setting  up  Outlook  in-box  rules 
to  sort  mail  using  the  spam-level  tags.  If 
employees  find  mislabeled  spam,  Stewart  asks 
that  they  forward  it  to  a  special  folder  for  use  in 
retraining  the  Bayesian  filter. 

Management  of  Outlook  clients  has  been  a 
non-issue,  he  says:  “Eighty-plus  percent  of  the 
people  who  do  this  figured  it  out  without  any 
help  from  IT.  If  someone  does  have  a  problem, 
it’s  not  that  big  of  a  deal  to  get  IT  staff  out  there 
to  check  out  their  rules.” 

So  far,  about  100  of  Artesyn’s 
250  employees  participate  in 
the  anti-spam  program;  many 
of  these  participants  are  engi¬ 
neers  whose  e-mail  addresses 
are  widely  available  from 
Usenet  postings.  Since  he 
began  filtering  spam,  Stewart 
has  discovered  that  Artesyn 
receives  between  3,000  and 
4,000  unwanted  e-mails  a  day, 
compared  with  750  legitimate 
messages  a  week.  Spam¬ 
Assassin  “literally  changed  my 
life,”  Stewart  says,  noting  that 
he  is  no  longer  hobbled  by  the 
constant  e-mail  checks  re¬ 
quired  when  spam  was  pour¬ 
ing  into  his  in-box.“There’s  just 
no  other  way  to  deal  with 
spam  than  to  have  a  filter.” 

By  using  open  source  code, 
putting  a  spare  PC  to  use  as 
the  Spaminator  server  and 
exerting  a  little  programming 
elbow  grease,“Our  total  invest¬ 


ment  in  this  was  zero  —  it  was  just  my  time,” 
Stewart  says.  _ 


Neural  networks 

Yet,  Artesyn’s  creative  adaptation  only  elimi¬ 
nates  installing  software  on  clients  —  and  man¬ 
aging  it  thereafter.  But  it  still  ultimately  deSls~ 
with  the  spam  at  the  client  and  so,  like  most 
Bayesian  filtering  products,  does  nothing- to- 
ease  the  stress  all  that  unwanted  e-mail  places 
on  network  processors.  - 

Artesyn’s  network  can  handle  the  load,  so 
Stewart  favors  this  approach  as  an  insurance  pol¬ 


icy  that  legitimate  mail  isn’t  deleted  as  spam.“It’s 
bothersome. 
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but  we’ve  got  the  capacity  to  handle  it.  A  false 
positive  is  much  worse  than  a  false  negative. 
Sales  doesn’t  want  to  lose  a  possible  sale,”  he 
.says.“lf  this  was  my  personal  mail,  1  would  cer¬ 
tainly  just  drop  it  at  the  gateway.  But  as  a  busi¬ 
ness,  we  need  to  make  sure  we’re  not  getting  rid 
of  legitimate  e-mail.” 

Bayesian-like  technologies  for  products  that 
operate  at  the  e-mail  gateway  are  what’s 
needed  for  that,  some  vendors  say.  Joshua 
"Elicio,  information  security  officer  for  Mem¬ 
orial  Health  Center  in  Las  Cruces,  N.M.,  says 
stopping  spam  at  the  gateway  is  critically 
important.  He  doesn’t  want  to  drop  legitimate 
e-mail,  but  doesn’t  want  spam  clogging  up  the 
network  plumbing,  either. 

_  In  March  2002,  Elicio  activated 


anti-spam  filters  in  the  anti-virus  software  he 
used,  SurfControl’s  E-mail  Filter,  to  stop  spam  at 
the  gateway  Of  the  4,600  e-mails  the  hospital 
received  per  week,  he  saw  that  only  about  750 
were  legitimate.  Elicio  analyzed  those  e-mails 
and  decided  to  take  the  more  drastic  measure 
of  blocking  e-mail  generated  from  suspect  ori¬ 
gins.  “We’re  a  hospital  in  southern  New  Mexico. 
We  don’t  deal  a  lot  with  Czechoslovakian  com¬ 
panies,”  he  quips.  With  that,  plus  other 
SurfControl  filters,  Elicio  has  reduced  spam  to 
300  messages  a  day“Spam  doesn’t  get  to  the  in¬ 
box,”  he  says. 

The  downside  is  that  the  more  aggressively  a 
network  executive  blocks  spam  —  the  more 
“intelligent”  and  automated  the  process  —  the 
higher  the  risk  of  false  positives.  But  Symantec 
and  other  vendors  using  neural  networks 
say  that  technology 


applies  self-learning  in  a  safer  and  more 
appropriate  way  than  Bayesian  filtering  could 
at  the  gateway. 

A  neural  network,  based  on  artificial  intelli-. 
gence  algorithms,  is  similar  to  Bayesian  filter¬ 
ing  in  that  the  software  trains  itself  to  recog¬ 
nize  new  spam.  But  the  software  for  training 
resides  at  the  vendors’  sites,  not  on  users’ 
clients.  The  batch  of  e-mail  by  which  neural 
networks  train  comes  from  thousands  of 
phony  e-mail  in-boxes  the  vendors  set  up  tO“ 
collect  spam.  With  millions  of  spam  messages 
to  examine  hourly,  the  machine-learning  soft¬ 
ware  is  constantly  on  the  cutting  edge  of 
spammers’  tricks,  vendors  say. 

But,  similar  to  anti-virus  software,  products 
using  neural  networks  require  users  to  update, 
their  gateway  software  at  regular  intervals,  usu¬ 
ally  once  a  day.  Messages  identified  as  spam  at 
the  gateway  can  be  lodged  in  a  spam  folder  for 
administrator  review.  Or,  if  the  message’s 
spam  rating  is  high  enough  (while  the  com¬ 
pany’s  concern  over  false  positives  is 
tow  enough),  the  message  can  be" 
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deleted  outright. 

Software  in  this  genre  runs  from  $15 
to  $20  for  a  500-user  license  and  drops 
considerably  for  larger  installations. 
This  fee  includes  the  gateway  software 
and  the  ongoing  service  subscription, _ 
vendors  say. 
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Anti-spam  on  the  Hill 

•  Criminal  Spam  Act  of  2003,  introduced  in  June 
by  Sen.  Orrin  Hatch  (R-Utah). 

•  Stop  Pornography  and  Abusive  Marketing  Act 
(the  SPAM  Act),  introduced  in  June  by  Sen. 
Charles  Schumer  (D-N.Y.). 

•The  Reduction  in  Distribution  of  Spam  Act  of 
2003,  introduced  in  May  by  Rep.  Richard  Burr 
(R-N.C.). 

•  Controlling  the  Assault  of  Non-Solicited 
Pornography  and  Marketing  Act  (CAN-SPAM), 
introduced  in  April  by  Sen.  Conrad  Burns  (R- 
Mont.). 

•  Computer  Owners’  Bill  of  Rights,  introduced  in 
March  by  Sen.  Mark  Dayton  (D-Minn.). 

•  An  unnamed  effort  for  a  joint  anti-spam  agree¬ 
ment  between  the  U.S.  and  European  Union,  pro¬ 
posed  in  July. 


Lost  advantage  from  automation 

Vendors  using  a  neural  network  say 
■  their  products  detect  new  spam  methods 
faster  than  competitors  without  one.  But 
—  gateway  filtering  methods  other  than 
neural  networks  also  use  the  mass  phony 
_  in-box  model,  with  one  example  being  the 
fingerprinting  Brightmail  uses  in  Antispam 
_  Enterprise  Edition.  So  you  could  fairly  call 
'  neural  networks  just  another  back-end 
technology  that  depends  on  how  quickly 
updates  are  available  and  applied.  Needing 
constant  updates  is  the  reason  that  self¬ 
learning  filters  such  as  Bayesian  were  creat¬ 
ed.  It  is  even  the  downside  for  gateway  filter¬ 
ing  products  that  use  Bayesian  filtering,  such 
as  ProofPoint’s  software.  All  this  means  neural 
networks  are  not  automatically  a  harbinger  of 
a  product’s  superior  performance.  Plus,  the 
effectiveness  of  any  spam  product  depends  as 
much  on  tuning  as  its  technology.  (See  our 
product  review  “Spam  in  the  wild,”  www.nw 
fusion.com,  DocFinder;  7826.) 

Still,  users  such  as  Dave  Jordan,  chief  infor¬ 
mation  security  officer  for  Arlington  County  in 
Virginia,  say  that  continuously  grabbing 
updates  is  a  small  price  to  pay  for  always-effec-" 
five  gateway  filters.  In  January,  Jordan  added 
Symantec’s  anti-spam  filters  to  the  Symantec 
anti-virus  tool  Arlington  uses  and  watched  as 
the  filters  immediately  blocked  up  to  2,000 
unwanted  e-mails  per  day.  “This  has  been  an 
easy  introduction  of  new  technology  —  and 
new  technology  is  usually  disruptive,”  he  .says. 

As  long  as  spam  remains  a  cat-and-mouse 
game  between  companies  and  e-mail  mar¬ 
keters,  vendors  will  be  pressured  to  make  ever- 
more-intelligent  and  adaptive  filters.  For  those 
who  haven’t  yet  investigated  automated  filter¬ 
ing  techniques,  at  a  5%  increase  per  month  in 
spam,  now  is  the  time  to  do  so  ■ 


stop  spam  now 
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Shut  it  off  with  SurfControl  E-mail  Filter. 

Only  SurfControl  E-mail  Filter  stops  unwanted  content  using  advanced  Adaptive  Reasoning  Technology,  artificial 
intelligence,  and  an  Anti-Spam  Agent  that  blocks  virtually  100%  of  spam  at  the  server.  This  simple-to-use  enterprise 
solution  also  blocks  inappropriate  content,  secures  confidential  data,  optimizes  network  bandwidth  and  adds  a  layer  of 
protection  against  viruses.  And,  it’s  easy  to  install  on  any  SMTP  or  Exchange  platform. 

So  get  that  spam  out  of  your  hair  once  and  for  all.  Oownload  SurfControl  E-mail  Filter  now  for  a  free  30-day  evaluation. 

Visit  www.surfcontrol.com  or  call  1  800.368.3366 
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Security 
appliances 
are  the  latest 
rage,  thanks 
to  their  easy 
deployment 
and  high 
reliability. 


i.: 


Questroris 
for  your  secu- 
rity  applTance 
vendors 

•What  security 
standards  does 
your  box  support? 

•  In  what  ways  is 
the  appliance's 
operating  system 
hardened? 

•  Under  what  cir¬ 
cumstances  will 
the  appliance  need 
to  be  updated  with 
patches  and  how 
difficult  is  that 
process? 

•  How  compatible 
is  the  appliance 
with  the  rest  of  our  | 
IT  infrastructure? 

•  If  we  buy  multiple 
devices,  can  we 
manage  them  as  a 
pool  rather  than 
separately? 

O  O  O  o. 
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oday’s  security  appliances  per¬ 
form  so  many  necessary  secu¬ 
rity  functions,  they  are  becom¬ 
ing  irresistible  to  network  exec¬ 
utives.  IDC  reports  that  world¬ 
wide  unit  shipments  of  security 
appliances  increased  17%  in  the  first  quarter  of 
this  year  over  the  first  quarter  of  2002. 

True,  network  executives  still  prefer  the  tradi¬ 
tional  software-on-server  approach  for  their  con¬ 
ventional  needs  —  like  the  main  corporate  fire¬ 
wall.  But  they  like  appliances  for  their  simplicity 
and  convenience,  particularly  when  securing 
small  or  home  offices. 

“What  appliances  have  going  for  them  is  you 
can  drop  them  into  a  network,  configure  them 
and  you’re  done,”  says  Laura  Koetzle,  a  senior 
analyst  at  Forrester  Research.  “We  see  this  in 
organizations  that  have  a  lot  of  branch  offices, 
with  people  in  the  field  who  are  not  technical 
but  need  to  have  some  sort  of  security. You  can 
configure  the  appliance  in  the  head  office  and 
ship  it  out  to  the  remote  office.” 

Adds  Charles  Kolodgy  research  director  at 
IDCCYou  don’t  have  to  worry  about  patch  levels 
on  the  systems,  you  don’t  have  to  worry  about 
interactions  between  software  on  another 
machine,  and  you  don’t  have  to  worry  about 
buying  an  operating  system.  You  just  have  to 
receive  the  box  from  the  vendor’ 

However,  appliances  have  limitations.  They 
aren’t  as  reconfigurable  as  software-based  securi¬ 
ty  applications.  “Appliances  can  really  only  do 
what  they’re  designed  to  do,”  Koetzle  says.  “If 
your  needs  change  radically  it’s  tough  to  update 
appliances.  If  your  needs  are  stable  then  appli¬ 
ances  make  total  sense.” 


Beyond  firewalls 

The  earliest  models  mostly  combined  firewall 
and  VPN  functions,  but  today’s  crop  integrates  a 
wider  range,  such  as  intrusion  detection,  anti¬ 
virus  protection  and  content  filtering.  “Pretty 
much  everything  that  you  can  do  with  software 
you  can  do  with  an  appliance,”  Kolodgy  says. 

As  appliances’  capabilities  have  expanded, 
network  executives  gained  a  path  for  adding 
new  security  protections  to  their  networks.  Mike 
Grimm,  CIO  at  Seton,  a  Norristown,  Pa.,  manu¬ 
facturer  of  leather  automotive  products, 
uses  Fortinet’s  Fortigate  200  and  400  — 
appliances  for  VPN,  packet-level  virus¬ 
scanning  and  firewall  functions.  He  soon 
will  use  the  products’  intrusion-detection 
capabilities  as  well,  he  says. 

Seton  is  in  the  midst  of  an  appliance 
rollout  that  began  early  this  year,  with 
plans  to  use  appliances  at  11  regional 
sites  worldwide,  Grimm  says.  All  traffic 
going  in  or  out  of  each  facility  passes 
through  the  devices.  Grimm  initially  had 
concerns  that  the  packet-level  scanning 
might  cause  latency  problems  with  data 
flow,  but  says  his  fears  have  proven 
unfounded. 

By  using  the  appliances’VPN  functions 
to  secure  remote  offices,  Seton  will 
become  less  reliant  on  its  frame  relay 
network.Over  time,Grimm  will  phase  out 
frame  altogether  for  these  offices,  saving 
the  company  an  expected  $12,000  per 
month  in  telecom  costs,  he  says.  The 
appliances  cost  about  $50,000. 


Plus,  with  multiple  security  functions  executed 
by  a  single  device,“ress  staff  is  needed  to  main¬ 
tain  securit)^’  Grimm  says.  On  the  down  side, “if 
you  have  a  hardware  failure  you’re  in  trouble. We 
have  had  hardware  appliances  fail  us  in  the 
past,”  he  says.  To  counter  that,  he  has  placed  a 
second,  redundant  appliance  at  each  site. 

As  for  intrusion-detection,  time  will  tell  how 
well  the  appliances  perform.  Grimm  does  note 
that  through  the  first  seven  months  of  use,  Seton 
hasn’t  suffered  any  major  breaches  such  as 
viruses  or  hacker  attacks. 

Still,  Seton  also  uses  a  few  server-based  security 
software  applications,  such  as  the  virus  scanning 
of  its  enterprise  e-mail  systems.  Seton  began 
using  software  from  Trend  Microsystems  several 
years  ago  before  the  anti-virus  appliances  were 
available.  Grimm  feels  that  keeping  it  in  place 
gives  Seton  multiple  layers  of  protection  for 
e-mail. 

Protecting  thousands 

Raymond  James  Financial,  a  financial  ser¬ 
vices  company  in  St.  Pfetersburg,  Fla.,  also  is 
using  a  combination  of  appliances  and  tradi¬ 
tional  security  software.  The  company  uses 
Linux-based  appliances  called  V6  from  VPN 
Dynamics,  equipped  with  Check  Point  software 


for  firewall/VPN  and  intrusion  detection  and 
prevention. 

Raymond  James  has  installed  appliances  at  50 
of  its  locations  worldwide  and  ultimately  plans' 
to  deploy  the  devices  at  2,000  to  3,000  offices, 
says  Scott  Loach,  senior  information  security 
engineer.  The  appliances  cost  about  $500  each, 
including  hardware  and  software.  Loach  says, 
and  are  proving  to  be  a  cost-effective  way  to 
secure  its  widespread  network  of  home  offices 
and  independent  financial  advisors  environ¬ 
ments  —  smaller  facilities  that  are  not  covered 
by  the  corporate  firewall. 

Simplicity, centralized  management  and  moni¬ 
toring  were  among  the  key  selling  points  for  the' 
appliances.  Loach  says.  While  he  isn’t  planning 
on  tossing  out  the  server-based  Check  Point  soft¬ 
ware  now  used  as  the  main  corporate  firewall  at 
headquarters.  Loach  finds  appliances  equal  the- 
reliability  of  server-based  software. 

Analysts  agree:  Be  it  start-ups,  niche  players  or_ 
mainstream  security  vendors,  this  is  a  highly 
competitive  market  that  only  will  become  more 
so  as  appliances’  popularity  soars. 


Violino  is  a  freelance  writer  covering  business ' 
and  technology.  He  can  be  reached  at  bviolino® 
optonline.net.  — 


A  sampling  of  security  appliances 


Vendor 

Product 

Description 

Price 

Fortinet 

FortiGate  3600 

Network-based  anti-virus,  Web 
content  filtering,  firewall,  VPN 
and  intrusion  detection. 

About  $30,000. 

NetScreen 

Technologies 

NetScreen-IDP 

Intrusion-detection  and 
-prevention  device. 

NetScreen-IDP  10  is  about 
$8,000;  IDP  100  is  about 
$16,500;  IDP  500  is  about 
$35,000. 

Nokia  Internet 
Communications 

Nokia  Secure 
Access  System 

Secure  Sockets  LayerVPN. 

From  $3,500  to  $12,000  for  10 
connections,  ranging  up  to 
$55,000  for  500  connections. 

SonicWall 

SOHOTZW 

Integrated  firewall  and  VPN  for 
wireless  environments. 

Available  in  base  configuration 
supporting  up  to  25  users,  with 
upgrades  to  50  or  unlimited 
users  for  $895. 

Symantec 

Gateway 

Security5400 

Series 

Firewall,  VPN,  intrusion  detection 
and  prevention,  anti-virus 
software  and  content  filtering. 

Ranges  from  $4,000  to  $51,300 
based  on  model,  functions 
and  number  of  nodes  used. 
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The  switch  that  adapts 
to  any  environment. 

And  always  will. 
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Introducing  the  Matrix^''  N-Series 

Scalability  and  security  adapted  to  your  enterprise. 


Because  your  needs  change  so  often,  you 
need  a  switch  that  can  keep  up.  That’s  the 
revolutionary  new  Matrix  N-Series.  Thanks 
to  an  exclusive  distributed  architecture — 
where  all  switching  and  control  functions 
reside  on  each  module — ^the  N-Series  lets 
you  cost-effectively  add  bandwidth,  users  and 
applications  on  the  fly.  And  no  other  switch 
offers  such  a  low  entry  cost. 

A  wide  range  of  secure  connectivity 
options  means  the  Matrix  N-Series  will 
scale  to  support  converged  applications 


like  video  streaming,  VoIP  and  more  without 
expensive  upgrades.  With  unsurpassed 
reliability,  flexibility  and  investment 
protection,  the  N-Series  is  a  key  component 
to  any  Business-Driven  Network.™ 

Now  and  always. 

For  a  FREE  whitepaper  on  the  Matrix 
N-Series  and  Multilayer  Packet  Classification, 
go  to  enterasys.com/nw/n-series 
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Some  worry 
that  RBOC 
Fiber-to-the- 
Premises  plans 
provide  more 
hot  air  than 
substantive 
value. 

■  BY  JENNIFER  JONES 


s 


Questions  for 
your  RBQC _ 

•When  will  FTTP  be 
available,  especially 
for  my  hard-to-outf it 
locations? 

•What  would  my 
users  be  able  to  do 
with  fiber  infra-  - 
structures  that  they 
cannot  do  now  with 
DSL  or  high-speed 
cable  service? 

•Would  my  company 
have  to  share  in 
lrend\!ng  or  other 
costs  associated 
with  extending  fiber 
to  a  facility? 

•  For  users  with  mul¬ 
tiple  locations  and 
■omts-of-sale  activi- 
v:  Would  volume^  _ 
‘•“ov'os  and 

b 

'^liability 
of'  jet  an  l(^'rstment 
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ervor  over  Fiber  to  the  Premises 
has  the  attention  of  many  net¬ 
work  executives  who,  like  George 
Mason  University’s  Randy  Ander¬ 
son,  have  been  locked  into 
reliance  on  traditional  T-1  lines  to  outfit  remote 
sites  with  high-speed  connectivity 

Of  FTTR  Anderson,  director  of  network  engi¬ 
neering  and  technology  at  the  Fairfax, Va.,  uni¬ 
versity,  says:  “We’d  love  to  explore  that  possibili¬ 
ty”  He  considers  FTTP  as  a  potential  alternative 
to  DSL,  which  he  hasn’t  embraced  because  of 
its  dubious  track  record  on  reliability. 

FTTP  promises  better  performance  and 
greater  speed  than  DSL,  which  is  delivered  to 
the  premises  via  copper.  It  will  run  at  lOOM 
bit/sec  vs.  the  1.5M  bit/sec  or  so  DSL  hovers 
around,  sources  say  For  corporations,  propo¬ 
nents  point  to  applications  such  as  PC  backup, 
telecommuting  and  high-definition  videocon¬ 
ferencing  as  ripe  for  FTTP  deployments. 

Yet  some  industry  watchers  say  the  buzz  sur¬ 
rounding  FTTP  might  be  more  hot  air  than 
substantive  network  plans.  Even  Anderson  says 
that  he  doesn’t  anticipate  FTTP  soon  displac¬ 
ing  any  network  connections. 

“A  lot  depends  on  the  carriers  getting  an 
effective  FTTP  strategy  and  really  supporting 
it,”  he  says.  “For  businesses,  that  is  really  key. 
They  have  to  be  able  to  get  the  access  and  be 
assured  that  it  will  stay  up  and  get  fixed  if  it 
happens  to  go  down.  DSL  does  not  have  any  of 
those  advantages” 

FTTP  relies  on  passive  optical  network  (PON) 
technology  to  bring  high-speed 
fiber  optic  all,  or  almost  all,  the  way 
to  a  remote  office, small  business  or 
home.  It  requires  carriers  to  replace 
antiquated  copper  with  entirely 
new  fiber  infrastructure. 

While  fiber  optic  is  finding  its  way  - 
into  carriers’  long-haul  infrastruc¬ 
tures  and  has  heavily  penetrated 
larger  metropolitan-area  networks 
(thanks  to  the  efforts  of  now  mostly 
defunct  upstart  competitive  local 
exchange  carriers),  experts  say  that 
when  it  comes  to  extending  fiber  to 
busine.sses  or  homes,  it  is  more  a 
case  of  almost  than  all  the  way. 

F'lTP  will  change  that,  says  Daniel 
Briere,  CEO  of  consultancy  Tele- 
Choice.“F’rTP  is  the  next  big  push  in 
.  fiber,”  he  .says. 

Three  of  the  four  regional  Bell 
operating  companies  —  BellSouth, 

SBC  and  Verizon  —  certainly  have 
indicated  as  much.  In  May,  they 
turned  FTTP  into  public  network 


buzz  when  they  announced  the  adoption  of 
the  ITU-T’s  G.983  standard  for  ATM  PON. 
Further,  the  three  companies  gathered  bids  in 
August  for  the  equipment  needed  to  assemble 
FTTP  backbones.  Companies  are  hush  on  the 
fine  print  in  that  RFI)  but  industry  experts  say 
the  carriers  are  examining  offerings  from 
Alcatel,  Cisco,  Lucent,  Nortel  and  Siemens. 

Most  consider  this  heated  effort  a  response  to 
cable  operators’  formidable  campaigns  to  extend 
high-speed  Internet  access  to  their  customer 
bases.  And  many  see  it  as  less  a  technology  move 
than  a  regulatory  ploy  —  and  a  successful  one, 
given  the  FCC’s  decision  in  late  August  to  let  the 
RBOCs  stop  offering  discounted  line-sharing  ser¬ 
vices  to  competing  ISPs  offering  residential  DSL 
services.  In  a  preliminary  decision  in  February 
the  FCC  had  made  it  clear  it  wants  to  see  fiber 
laid  to  more  homes  and  businesses  in  outlying 
and  rural  areas,  and  the  RBOCs  pushed  PON- 
based  FTTP  as  a  cost-effective  means  of  getting 
that  fiber  out. 

“The  RBOCs  are  in  some  ways  just  passively 
encouraging  fiber  to  the  home  and  fiber  to  the 
premises  because  it  makes  them  look  good  in 
front  of  the  FCC.  It  makes  it  look  like  something 
is  really  happening  here,”  says  Thomas  Nolle, 
president  of  research  firm  CIMI. 

The  RBOCs  say  otherwise.“We  will  be  ready  at 
the  beginning  of  next  year  for  volume  deploy¬ 
ments,”  says  Jim  Jackson,  research  director  at 
BellSouth. 

Keith  Cambron,  CEO  of  SBC  Laboratories, 


describes  the  likely  course  of  FTTP  deploy¬ 
ments:  “What  you  will  see  in  2004  will  involve 
mostly  new  construction,  what  we  call  ‘green 
fields,’  and  a  lot  of  fiber  extended  to  multiple - 
dwelling  units.  After  that,  we  will  begin  what 
we  call  ‘aerial  plant  rehabs’  where  we  will  go . 
in  and  begin  replacing  copper  plants  that  are 
20  years  old.”  _ 

But  Gartner  predicts  that  FTTP  deployments 
of  any  significance  will  not  materialize  before 
2010.  And  Nolle  dismisses  RBOC  plans  as 
being  limited  to  the  newest  suburban  com¬ 
munities.  “We  already  have  upscale,  affluent' 
neighborhoods  that  are  wired  with  fiber.  That 
is  just  eye  candy,  proof-of-concept  stuff,” - 
he  says. 

BellSouth  has  its  fiber-to-the-curb  initiative, 
which  boasts  1  million  lines  of  fiber  to  the 
home;  and  SBC  has  dabbled  in  FTTC  in. a. 
Mission  Bay,  Calif.,  trial,  according  to  a  recent 
Gartner  report. 
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But  the  carriers  insist  they  also  will  pursue 
corporate  accounts.  BellSouth’s  Jackson  even 
says, “The  most  interesting  opportunities  I  see” 
are  the  ones  involving  campus  environments.” 
He  points  to  Coca-Cola  and  Delta  Airlines  as  - 
ideal  FTTP  candidates. 

Small  businesses  situated  within  or  near 
new  suburban  communities  also  could  make 
use  of  newly  available  fiber,  carrier  executives  _ 
say. 

George  Mason’s  Anderson  is  awaiting  word 
from  his  carrier,  Verizon,  for  details  on  when 
FTTP  might  be  available  for  the  universi- 
ty’s  use,  though  he’s  not  interested  in  a 
full-scale  campus  deployment.  “This  is 
something  that  is  more  suited  for' 
remote  offices.  Our  campuses  are  fully 
wired,”  he  says.  “But  the  problem  is- 
when  we  move  people  off  site.  This 
area  [northern  Virginia]  is  growing  so- 
rapidly  that  we  have  more  and  more 
people  stuck  out  in  the  boondocks.” 
However,  given  DSL’s  sub-par  show¬ 
ing,  ClMl’s  Nolle  and  others  ques¬ 
tion  whether  demand  requirements 
amid  businesses  or  even  con¬ 
sumers  justify  a  major  push  for” 
fiber.  Qwest,  the  RBOC  holdout  on 
FTTPsays  it  isn’t  registering  much 
demand.  A  company  spokes¬ 
woman  says  the  carrier  doesn’t 
see  enough  potential  returns  on 
_  heavy  FTTP  investments  to  join 
in  on  this  latest  industry  buzz. 
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Jones  is  a  freelance  writer  in 
Vienna,  Va.  She  can  be  reached  at 
jjwriterva@aol.  com. 
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Training  video  is  content.  Seismic  studies  are  content.  And  so  are  CAT 
scan  images,  PDF  files,  audio  clips  and  presentations.  According  to  the 
analysts,  an  avalanche  of  content  is  about  to  land  on  top  of  your  data  center. 
Are  you  ready?  With  a  Sony  PetaSite®  data  tape  library,  you  will  be. 

Sony’s  PetaSite  libraries  extend  beyond  terabytes  into  petabytes— to 
keep  abreast  of  your  growing  storage  needs.  SAIT  PetaSite  libraries 
leverage  the  world's  highest  capacity  data  cartridge’— SAIT— to  achieve 
the  highest  storage  density.  So  you  save  precious  data  center  space.  SAIT 
also  offers  the  lowest  tape  cost  per  gigabyte.”  So  you  save  money.  Or 
choose  Sony's  DTF-2  PetaSite  libraries,  which  have  lightning-fast  loading 
and  file  access.  So  you  also  save  time. 


Sony  PetaSite  libraries  are  ideal  for  backup,  archiving  and  Flierarchical 
Storage  Management.  Sony  PetaBack®  and  PetaServe®  solutions  give 
you  even  greater  flexibility. 


Sony  PetaSite  libraries.  The  Work  Smart  solution  for  storing  content. 


Work  Smart.  Work  Sony. 


'Source.  Storage  Analytics*  Tape  Format  Facts.  1/24A}3 
'•Medja  comparison  based  on  MSRPs  of  SAIT.  LTO.  AIT-3  and  SDLT  mid-range  formats  as  featured  in  CDW.  1/23/03 


VISIT  WWW.SONY.COM/DATASYSTEMS  OR  CALL  800-829-7669  FOR 
MORE  INFORMATION  ON  SONY'S  PetaSite  SOLUTIONS. 


TAPEDRIVESrj^ 


C  ^03  Sony  Electrof^  Inc  AU  nghls  reserved  Reproduction  whole  or  or  part  without  written  permission  is  prohibited.  Features  and  spectfications  are  sut^ect  to  change  without  notice.  Sony,  Pet^ack.  PetaServe  and  PetaSite  are  traoemarks  of  iony. 


Let  MRV  Build  Your  WDM  Network 


mrv.com/nwdm 


From  Simple  Building  Blocks  to  Carrier  Grade  Solutions... 

Whether  your  application  is  Campus  Enterprise,  Cable  MSO  or  Metro  Access,  MRV  has  a  flexible 
optical. solution  that  fits  within  your  budget.  Our  CWDM  and  DWDM  systems  help  you  increase 
your  bandwidth  capacity,  or  offer  wavelength  services  —  from  T1/E1  to  OC-48,  and  any 
Ethernet  or  Storage  protocol.^  ♦  We  provide  solutions  from  'do-it-yourself  WDM  with  our 
pluggable  optics  (SFP  &  GBIC)  -  including  digital  diagnostics,  a  powerful  management  tool  at 
the  optical  interface  level  -  all  the  way  to  full-size  modular  systems  with  64  DWDM 
wavelengths.  ♦  Since  1988,  we  have  provided  connectivity  solutions  for  networks  that  scale 
in  size,  speed,  distance  and  complexity.  In  fact,  some  of  the  world's  largest  networks  rely  on 
our  switches,  routers,  optical  transport  systems  and  remote  presence  equipment. 


ClVDM 


.<V-’  f  >  •  •  * 


•  ,  •  •  .  S.'*’  '  ^ 


, — !t»i«iinu«i{0»UBi,  Im. 


Turn  to  us  for  your  Connectivity  UnlimitecT*^  needs 


The  names  of  actual  companies  and  logos  mentioned  herein  may  be  trademarks  of  their  respective  owners. 
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Intelligence 
is  moving 
Into  the 

fabric,  but 
smart 
— storage  like 
this  might 
only  make 
-sense  for  the 
.biggest,  most 
complex 
SANs. 


BY  JOANNE  CUMMINGS 


emember  when  cutting 
storage  costs  and  adminis¬ 
trative  headaches  simply 
meant  implementing  a 
storage-area  network?  Those  days  are  gone. 
Now  storage  heavyweights  Brocade  Commiuni- 
cations  Systems  and  Cisco  are  pushing  a  new 
panacea  —  moving  storage  intelligence  off 
SAN  servers  and  storage  devices  and  into  the 
SAN  fabric  itself. 

Although  more  intelligent  SAN  switches  and 
appliances  promise  easier  management  and  bet¬ 
ter  scalability  the  trick  for  network  executives  will 
be  to  make  the  move  cost-effective,  users  and 
analysts  say. 

“Not  everyone  will  be  able  to  take  advantage  of 
this  move  to  put  more  storage  intelligence  in  the 
SAN  fabric,”  says  Tom  Barclay  lead  developer  and 
program  manager  for  the  TerraServer  project, 
which  provides  interactive  U.S.  Geological  Survey 
aerial  maps  to  users  via  the  Web.  “It  will  make 
sense  only  for  the  biggest,  most  complex  S/UMs.” 

Vendors  agree.  “You  won’t  think  about  moving 
intelligence  into  the  fabric  until  you  have  a  very 
large  SAN  in  place,  with  a  very  large  amount  of 
servers,  disk  drives  and  arrays,”  says  Tom 
Buiocchi,  marketing  vice  president  at  Brocade, 
which  comes  by  its  intelligent  storage  switch 
technology  via  the  November  2002  acquisition  of 
start-up  Rhapsody  Networks.  “At  that  point,  it 
becomes  crucial.” 


The  key  is  making  sure  that  not  only  are  you 
saving  management  costs,  but  that  you  move  the 
right  applications  to  the  fabric  and  that  you  can 
recoup  your  investment  in  other  intelligent 
devices  within  the  SAN. 

How  it  works 

In  traditional  SANs,  the  intelligence  necessary 
to  perform  key  storage  applications  such  as  vir¬ 
tualization,  snapshot  copying,  data  replication 
and  disk  mirroring  are  performed  primarily  at  the 
host,  or  server,  level. 

This  means  that  to  implement  virtualization,  in 
which  servers  view  all  enterprise  storage  devices 
as  one  large  pool  of  storage,  the  virtualization 
software  must  run  on  every  server. 

“Say  I  have  100  servers  across  my  company 
and  25  are  from  Dell  running  NT,  25  are  from 
Sun,  25  are  from  IBM,  and  25  are  from  HP,” 
Buiocchi  says.“If  I  want  to  do  virtualization  today 
typically  I  buy  software  and  load  it  on  all  my 
servers.”  That’s  100  licenses,  with  some  for  NT, 
some  for  Solaris  and  so  on,  he  says. 

The  result  is  100  management  touch  points  for 
the  storage  administrator,  who  needs  to  track  and 
maintain  what  the  servers  are  running.  But  what 
if  you  could  move  that  same  piece  of  software  off 
those  100  servers  and  on  to  one  or  two  SAN 
switches? 

“It’s  essentially  the  same  software  customized 
to  run  on  a  switch  as  opposed  to  a  server,”  he 


says.’And  now  you’ve  reduced  that  management 
toll  to  one  or  two  touch  points.” 

You’ve  also  opened  up  the  storage  to  gain  a 
many-to-many  relationship,  analysts  say.  “Usually, 
when  storage  is  tied  to  the  server  or  host,  SAN 
users  with  access  to  that  host  can  reach  only  the 
one  storage  device  attached  there,”  says  David 
Hill,  vice  president  of  storage  research  at 
Aberdeen  Group.“But  when  you  move  that  func¬ 
tionality  out  to  the  switch,  now  many  users  have 
access  to  many  hosts  and  storage  devices.  It 
scales  up  the  storage  environment.” 

Make  the  move  judicious 

While  the  virtualization  scenario  above  seems 
to  make  sense,  other  types  of  storage  intelligence 
should  never  move  to  the  fabric. “Server  failover 
and  multi-pathing  will  always  run  on  the  server. 
That’s  software  that  says,‘Hey  I  tried  to  write  some 
data  to  this  switch  but  that  switch  is  dead.  I  need 
to  write  it  across  another  switch  so  it  gets  down 
to  the  storage.’  That  software  has  to  run  on  the 
server?  Buiocchi  says.  “The  same  goes  for  disk 
caching  and  RAID  functionality.  That  needs  to 
run  very  close  to  the  disk  drives  in  the  array  so 
that’s  going  to  stay  there.” 

It  also  depends  on  the  granularity  of  what 
you’re  managing.  Hill  says.  “If  I  have  a  tape 
library',  and  I  want  to  capture  information  about 
its  health  and  how  that  particular  unit  is  per¬ 
forming,  that’s  separate  from  the  management 


Intelligence  in  the  switch  fabric  sounds 
great  to  Michelle  Butler,  stor^e 
manager  at  the  National  Center  for 
Supercomputing  Applications  at  the 
University  of  Illinois  —  if  her  existing 
vendors  support  it 


:-.v  ••  VwJ-  Tr  ■  •>  ik.  - 

BhK-  WI 


'  .  ...'.af.'. 

'i'. 


■ 

.  ■  TV  V:/' SriT;.  ■Yo:! 


NetworkWorld  The  Buzz  Issue  9/29/03 


WWW.  nwfusion. com/buzz/2003/ 


58 


of  the  actual  data  that  goes 
onto  it.  It’s  very  local  to  the 
particular  device,  tape  drive, 
library  or  disk  drive.  That’s 
the  stuff  that  won’t  move  to 
the  network.” 

Dave  Uvelli,  tape  library 
program  manager  at  Ad¬ 
vanced  Digital  Information,  a 
leading  tape  library  vendor, 
agrees.  “There  are  lots  of 
things  we  do  at  the  tape 
library  level  that  could  never 
be  moved  to  the  switch.  We 
can  tell  you  if  a  tape  drive  is 
full  or  not  functioning  prop¬ 
erly.  There’s  no  way  a  switch 
vendor  can  possibly  manage  that  complexity 
from  within  the  network,”  he  says. 

Hill  .says  moving  intelligence  to  the  network  is 
sensible  only  for  “big  picture”  items.“Where  data 
needs  to  be  moved  across  multiple  storage  plat¬ 
forms  or  across  many  heterogeneous  servers,  it 
makes  sense  to  centralize  that  function  in  the 
middle  of  the  network  so  you’re  isolated  from  the 
idiosyncrasies  of  18  different  servers  and  41  dif¬ 
ferent  disks,”  he  says. 

Switch  or  appliance? 

Once  you  decide  to  move  intelligence  to  the 
SAN  fabric,  you  need  to  make  sure  the  imple¬ 
mentation  you  choose  is  tuned  for  the  highest 
performance  and  scalability  vendors  say  Cisco, 
with  its  MDS  9000  Series 
switches  (based  on  technolo¬ 
gy  gained  through  its  pur¬ 
chase  last  summer  of  start-up 
Andiamo  Systems),  and 
Brocade,  with  its  SilkWorm 
Fabric  Application  Platform, 
promise  the  switches  are  opti¬ 
mized  to  run  intelligent  appli¬ 
cations  through  newly  creat- 
"ed  ASICs  and  firmware. 

Brocade’s  switches  are  sched¬ 
uled  to  debut  by  year-end  for 
as-yet-undetermined  prices. 

The  Cisco  MDS  9000  family 
system  pricing  starts  at 
$30,000  and  is  scheduled  to 
be  available  in  the  fourth 
quarter  this  year. 

Using  a  storage  appliance 
(such  as  those  from  DataCore 
Software,  FalconStor  Software 
and  HP)  to  gain  the  same  flex¬ 
ibility  and  network-based 
intelligence  adds  too  great  a 
performance  hit,  Buiocchi 
says.  “It’s  basically  adding  soft¬ 
ware  to  a  PC,  but  all  of  the  PCI 
buses  and  internals  of  a  PC 
are  not  optimized  for  storage 
applications,  and  you  end  up 
introducing  latencies,”  he  says. 

Genevieve  Sullivan,  market¬ 
ing  manager  within  HP’s  stor¬ 
age  software  division,  dis- 
agrees.“lt’s  not  an  either/or  sit¬ 
uation  when  it  comes  to  appli¬ 
ances  or  switches,"  she  says. 

While  HP  offers  its 


The  acquisition  game 


August  2003 

McData  acquires 
Sanera  —  Fibre 
Channel  with 
partitioning. 

McData  acquires 
Nishan  Systems  — 
iFCP,  FCIP,  iSCSI. 
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Questions  for 
your  intelligent 
storage  switch 
vendors 


•  What  vendors 
have  you  partnered 
with,  or  do  you  plan 
on  partnering  with 
to  port  storage 
software  applica¬ 
tions  to  your  switch 
platform? 

•  Will  I  be  locked  in 
once  I  move  storage 
applications  to  the 
fabric,  or  can  I  back¬ 
track  or  move  to 
something  new? 

•  How  much  is  this 
going  to  cost? 

•  Will  this  new  intel¬ 
ligent  switch  inter¬ 
act  seamlessly  with 
the  less-intelligent 
switches  in  my 
SAN,  or  do  I  need 
to  upgrade  every 
switch  at  once? 

•  How  future-proof 
is  this  switch?  Will  it 
be  able  to  support 
iSCSI  in  addition  to 
Fibre  Channel,  for 
instance? 
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2003 


I  I  I  I  II  I  I 


1 2004 


Continuous  Access  Storage  Appliance  for  adding 
virtualization  and  other  intelligent  capabilities  to 
the  storage  fabric,  it  is  working  to  move  the  CASA 
functionality  to  Brocade’s  switch. 

“There’s  a  place  forboth,”she  says.“It’s  up  to  cus¬ 
tomers  to  decide  what  they  need  in  terms  of 
functionality  and  other  factors.” 

For  example,  if  three  appliances  cost  less  than 
one  intelligent  switch  that  can  handle  the  func¬ 
tionality  of  those  three  appliances,  maybe  it 
makes  sense  to  keep  the  appliances,  especially  if 
the  administrative  burden  and  the  performance 
need  is  not  too  great.  “But  each  organization  is 
different,” she  says. 

Aberdeen’s  Hill  says  the  appliance/switch 
debate  is  pointless.  “Either  way  will  work,  and 
you  just  have  to  gauge  your 
environment,”  he  says.“Even  if 
there’s  a  little  inefficiency 
with  an  appliance,  it  may  not 
matter  because  before  you 
reach  its  physical  limits, some¬ 
thing  else  in  the  SAN  may 
become  the  bottleneck.lt  may 
work  fast  enough  for  all  you 
need  to  do  and  for  the  appli¬ 
cations  you  have.” 


Look  at  partnerships 

Users  would  be  wiser  to  pay 
attention  to  how  the  intelli¬ 
gence  is  implemented  in  the 
fabric. 

“The  relationships  with  the  ap¬ 
plications  and  disk  vendors  are 
what  would  sell  it  to  us,”  says 
Michelle  Butler,  technical  pro¬ 
gram  manager  in  charge  of  stor¬ 
age  at  the  National  Center  for 
Supercomputing  Applications 
on  the  University  of  Illinois  cam¬ 
pus  in  Champaign-Urbana.  But¬ 
ler  oversees  three  SAN  fabrics, 
the  largest  of  which  uses  four 
Brocade  SilkWorm  12000  Core 
Fabric  Switches,  937  Itanium  2- 
based  servers  and  a  multi-ven¬ 
dor  hodgepodge  of  disks  and 
arrays,  all  supporting  more  than 
230  terabytes  of  storage. 

“Moving  some  intelligence 
into  the  switch  fabric  and  being 
able  to  host  out  some  of  this 
data  without  a  smart  server  on 
the  end  would  be  fantastic," 


Butler  says.“You  wouldn’t  have  to  spend  so  much 
money  on  hardware  and  setup  and  resources. 
But  I’d  like  to  see  what  it  actually  works  with.  If  it 
doesn’t  support  my  current  vendors,  it’s  not  really 
worth  the  move.” 

Cisco  and  Brocade  each  have  announced  part¬ 
nerships  with  EMC  and  Veritas  Software,  while 
Brocade  also  works  with  HP’s  CASA  group.  And 
both  vendors  say  they  also  intend  to  increase  the 
number  of  partners. 

“But  EMC  and  Veritas  are  the  most  expensive 
software  and  the  most  expensive  hardware  out 
there,”  Butler  says.  “If  it  could  work  with  what  I 
have  —  Serial  ATA,  LSI  disks  and  Data  Direct 
disks  —  that  would  be  the  deciding  factor^ 

TerraServer’s  Barclay  says  functionality  and 
investment  need  to  be  played  off  one  another. 
“You  have  to  fight  the  urge  to  get  carried  away 
with  the  technology  and  make  sure  that  this  is 
really  something  that  makes  sense  in  your  envi¬ 
ronment,”  he  says.  “Especially  if  everything  is 
working  today  I’m  leery  of  moving  more  intelli¬ 
gence  into  the  network  because  there  are  a  lot  of 
places  to  blow  it, and  it’s  not  like  you  can  go  back 
easily  Once  it’s  there,  you ’re  stuck.  And  if  it  doesn’t 
work,  you’re  touching  it  every  da/ 

Because  the  fabric  is  so  critical  to  his  storage ' 
network,  Barclay  says  he’d  be  sure  that  whatever 
he  did  in  the  switch  could'fail  over  easily  to  a 
more  traditional  server-based  solution.  “So  I’d 
have  it  in  both  places,  but  then,  what’s  the  point? 
You’re  not  really  saving  anything,”  he  says. 

Butler  says  she’s  taking  a  wait-and-see  stance. 
“Right  now,  we’re  looking  at  this  as  a  nice-to-have, 
but  something  that’s  not  that  critical,”  she  says. 
“But  in  a  couple  of  years,  as  our  fabrics  grow  and 
change,  it  will  become  a  must-have.  But  by  then, 
it  should  be  clearer  if  and  how  it  will  fit  with  us." 

Cummings  is  a  freelance  writer  in  North 
Andover,  Mass.  She  can  be  reached  at  jocum 
mings@comcast.  net. 
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Once  again,  data  is  undergoing  radical  changes.  But  this  time,  it’s  not  only  about  what  gets 
created,  it’s  where  and  how  it  is  protected.  Whether  it’s  an  individual,  workgroup,  department 
or  enterprise,  you  can  back  up  every  last  digital  bit  on  Snap  storage  and  file  server  solutions. 
Easy  to  implement,  easy  to  install  and  easy  to  manage.  In  fact,  one  out  of  every  two  Network 
Attached  Storage  installations  in  the  world  and  over  half  of  the  Fortune  500  rely  on  Snap 
servers  to  protect  their  critical  information.  1 -888-343-SNAP,  www.snapappliance.com 


H?  STEME  HABER  HAD 
TAKEN  FROM  HIM. 


It  could  have  been  a  tragic  story. 

Fortunately,  Steve’s  critical  financial  data  was  backed  up  by 
a  Network  Attached  Storage  solution  from  Snap  Appliance. 


©2003  Snap  Appliance. 
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Instant 
messaging 
and  Web 
conferences 
are  turning 
real-time 
collaboration 
into  an 
enterprise 
staple. 

■  BYCHRISTtNEPEREY 


Real-time 


eal-time  collaboration  is  a  hot 
topic  again.  This  time,  it 
seems,  the  buzz  has  sub¬ 
stance. 

,  ,  Analysts  describe  a  dramatic  expansion  of 
i  audio  and  videoconferences, e-meetings,  instant 
i  ,  messaging  and  other  real-time  collaborative 
i  ;  applications  among  enterprise  users.  Meta 
Group  indicates  that  Global  2000  knowledge 
workers  will  widely  embrace  real-time  collabo¬ 
ration  technologies  during  the  next  three  years. 

‘  '  Forrester  Research  reports  that  enterprise  orga¬ 
nizations  plan  to  more  than  triple  their  use  of 
‘  ‘  online  collaborative  design  tools  within  that 
I  I  same  time  frame. 

i  I  Real-time  collaboration  is  rising  on  the  enter- 
I  prise  radar  for  three  reasons.  First,  businesses  are 
I  1  striving  to  be  highly  responsive  while  still  reduc- 
I  ing  overhead  associated  with  human  resources. 
A  “real-time  enterprise”  uses  technology  to  iden- 
I  tify  opportunities  and  resolve  obstacles.  Web 
1  services  and  presence-detection  systems  that 


collaboration  tool  vendors 


r 


communication  and  collaboration  as  key  initia¬ 
tives  in  its  current  fiscal  year,  ending  June  30, 
2004.  Although  Microsoft  isn’t  the  real-time  col¬ 
laboration  market  leader  (IBM  holds  that  honor 
with  its  Lotus  Instant  Messaging  and  Web  Con¬ 
ferencing  software),  the  flexing  of  its  marketing 
muscle  throws  attention  at  these  technologies. 

Stand-alone  collaboration 

Use  of  Web  conferencing  services,  such  as 
WebEx  from  Web  Ex  Communications,  is  a  reliable 
indicator  of  the  adoption  of  one  category  of  real¬ 
time  collaboration  technology  —  the  stand-alone 
collaboration  application.  Videoconferencing, 
which  has  experienced  a  significant  5%  to  10% 
increase  in  use  worldwide  during  the  past  year, 
and  instant  messaging  are  other  examples  in  this 
category 

With  these  tools,  a  user  must  launch  a  separate 
application  or,  in  the  case  of  Web  or  videoconfer¬ 
encing,  must  use  previously  scheduled  sessions. 
That’s  a  potential  downside.“People  don’t  instinc¬ 
tively  want  to  stop  what  they’re  doing  in  the  mid¬ 
dle  of  their  workflow  and  start  ‘collaborating,’” 
says  Chris  Piche,  founder  and  president  of 
Eyeball  Networks,  a  provider  of  IP-based  audio 
and  videoconferencing  software. 

Still,  many  early  adopters  apparently  are  will¬ 
ing  to  make  the  effort.  WebEx  reports  a  35% 
increase  in  enterprise  use  from  the  first  to  sec¬ 
ond  quarter  of  2003. 


•What  are  your  plans  for  supporting  contextual 
collaboration? 

•Will  you  support  buddy  lists  based  on  your 
enterprise  instant-messaging  technology  plat¬ 
form  ora  public  instant-messaging  service? 

•  For  what  operating  systems  will  you  provide 
collaboration  support? 

•  Do  you  currently  or  are  you  planning  to  support 
voice  and  video  over  IP  as  part  of  your  collabora¬ 
tive  platform? 


Contextual  collaboration 

A  breakthrough  in  real-time  collaboration  is 
the  emergence  of  contextual  collaboration  — 
collaboration  initiated  from  within  a  productiv¬ 
ity  application  or  an  enterprise  portal.  Con¬ 
textual  collaboration  use  and  revenues  are  sig¬ 
nificantly  more  difficult  to  size  than  those  for 
the  stand-alone  applications.  For  example,  a  Mi¬ 
crosoft  Exchange  server  and  Windows  Server 
2003  license  with  Live  Communication  Server 
option  and  Office  1 1  productivity  applications 
soon  will  permit  real-time  collaboration  from  a 
mouse  click  in  PowerFbint  or  Word,  but  collab¬ 
oration  isn’t  the  principle  justification  for  these 
investments. 

Examples  of  context-sensitive  collaboration 
abound.  IBM  WebSphere  and  FVopleSoft  Enter¬ 
prise  Partal  are  two  tools  that  can  create  portals 
with  presence-publishing  and  monitoring  capa¬ 
bilities.  Wlien  linked  with  an  enterprise  instant¬ 
messaging  registration  server  (or  a  public  instant¬ 
messaging  service  provider)  users  on  these  por¬ 
tals  can  see  the  names  and  states  of  others. 

“We  believe  that  the  real-time  collaboration 


facilitate  real-time  collaboration  are  part  of  a 
real-time  corporation. 

The  second  driver  is  instant  messaging, coming 
of  age  in  the  workplace.  Having  an  easy  to  use 
“dashboard”  for  performing  rapid  inquiries 
reduces  the  real  and  perceived  barriers  between 
people  and  access  to  mission-critical  informa¬ 
tion.  Ferris  Research  has  found  that  once  people 
master  instant  messaging,  they  are  more  inclined 
to  adopt  other  forins  of  real-time  collaboration. 

Finally  Microsoft  has  designated  real-time 


_for  real! 

should  be  integrated  into  horizontal  as  well  ST 
vertical  applications.  Users  will  get  the  most 
impact  when  collaboration  is  part  of  their  work- 
flow^’  says  David  Gurle,  global  head  of  collabora¬ 
tion  services  at  Reuters  in  New  York.  Reuters  is 
integrating  real-time  collaboration  and  confer¬ 
encing  functionality  (such  as  application  sharing  _ 

and  instant  messaging)  into  its  3000Xtra  premi¬ 
um  information  service  to  foster  workflow. 

Contextual  collaboration  is  enabled  directly  by 
a  vendor,  as  in  case  of  IBM’s  portal  platform  and 
Microsoft’s  portal  and  productivity  tools;  or  ' 
through  middleware,  such  as  that  offered  by 

Ikimbo;  or  plug-ins,  such  as  those  offered  by - 

Advanced  Reality  and  others.  In  a  joint  develop¬ 
ment  with  business  process  management  vendor - 

MetaStorm,  Ikimbo  Agenda  enables  real-time 
collaboration  and  instant  messaging  among 
groups  of  people  responsible  for  different  mis¬ 
sion-critical  processes.  _ 

The  current  generation  of  contextual  collabo¬ 
ration  technology  relies  primarily  on  proprietary 
hooks  and  APIs.  Ratification  and  adoption  of 
industry  standards  such  as  Session  Initiation  Pro¬ 
tocol  and  SIP  for  Instant  Messaging  and  Presence 
Leveraging  Extensions  will  reduce  significantly 

the  time  involved  to  integrate  real-time  collabo-  - 

ration  capabilities  into  third-party  applications. 

IBM  and  Microsoft  say  they’ll  support  SiP  but - - 

proprietary  mechanisms  remain  important  in  the 
collaboration  platforms  released  to  date. 

Several  other  challenges  remain  as  well.  Most 
significantly,  companies  need  an  integrated  and 
automated  way  to  record  and  audit  collabora¬ 
tive  sessions  to  ensure  regulatory,  and  corporate 
policy,  compliance.  They  also  need  a  way  of  — 
establishing  sessions  across  firewalls  and  net¬ 
work  address  translation  devices  when  an  indi¬ 
vidual’s  IP  address  is  hidden. 

And  there  are  questions  of  cost.  Pilot  programs 
and  trials  do  not  accurately  reflect  the  final  total 

cost  of  ownership  for  real-time  collaboration, and _ 

until  companies  can  predict  the  impact  imple¬ 
mentations  will  have  on  their  budgets,  moving 
ahead  will  be  difficult. 

Despite  these  obstacles,  real-time  collaboration 
holds  the  potential  to  accelerate  business  deci¬ 
sions.  Enterprise  use  certainly  will  continue  grow¬ 
ing  during  the  next  12  months. 

Fbrey  president  of  Perey  Research  &  Consulting 
in  Placerville,  Calif,  which  specializes  in  rich 
media  collaboration  and  communications.  She  is 
also  a  member  of  the  Network  World  Global  Test 
Alliance.  She  can  be  reached  at  cperey@ 
perey.com. 
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Buy  a  Fastiron  Edge  9604  Switch  and  receive  a 
$1 ,000*  instant  discount  plus  Free  Layer  3  Upgrade. 
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Your  competitive  edge 


Fastiron  Edge"  Switches  let  you  do  more  with  less.  This  series  of  high-density  Layer 
2/3  switches,  including  the  Worlds  first  ‘/ti-port  10/100  plus  4  (ligabit  uplink  switch,  delivers 
the  fe.itures  of  a  chassis-based  switch  in  a  form  factor  designed  for  environments  where  space 
is  limited  and  reliabilirs'  is  key.  Featuring  hot-swappable.  redundant  power  supplies,  standards^ 
based  network  management,  a  common  user  interface,  and  the  time-proven  Iron  Ware'"  soft¬ 
ware  suite,  these  sw  itches  prov  ide  a  powerful,  easy-to-use.  and  reliable  edge  solution,  Power  over 
Lthernet  .ind  flexible  access  control  features  make  these  sw  itches  the  ideal  solution  for  network 
convergence.  (live  your  network  a  competitive  edge — get  a  Fastiron  F.dge  Switch,  (kill 
1  .(SSS.'FUKHC^F.^N  (1  .SSS.SS7.2(i.32)  or  visit  w  vvw.foundrynetworks.com/tes. 
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Are  wireless  LANs 
here  to  stay? 

From  the  amount  of  press  and  general 
marketing  activity  surrounding  Wi-Fi  you  could 
be  forgiven  for  thinking  nearly  every  enterprise 
in  North  America  had  implemented  a  wireless 
network  and  is  full  of  employees  running 
around  with  mobile  devices.  Many  companies 
have  indeed  implemented  wireless  LAN 
solutions  (WLAN)  and  are  enjoying  benefits 
ranging  from  reduced  wiring  costs  to 
increased  employee  productivity. 

In  this  SPECIAL  REPORT:  Wireless 
LANs  in  the  Enterprise,  we  will  examine 
some  of  the  drivers  behind  the  WLAN 
movement  that  can  help  you  deal  with 
the  ROI  question,  as  well  as  some  of 
the  challenges  that,  for  the  most  part, 
the  industry  is  in  the  process  of 
overcoming.  We  will  also  look  at 
various  strategies  for  implementing  an 
enterprise  WLAN,  to  help  you  come  up  with 
one  that  makes  sense  for  your  organization. 
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Network  World  Fusion  offers 
a  SPECIAL  REPORT: 

Wireless  LANS  in  the  Enterprise 

For  a  limited  time,  you  can  get  a  copy  of  this  SPECIAL  REPORT  in 
PDF  format,  free.  Just  visit  http://nww1.com/go/ad412.html 
to  download  your  FREE  copy  today  (registration  required). 
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Take  advantage  of  this  free  offer  from 
Network  World  Fusion  and  secure  your  copy 
of  the  SPECIAL  REPORT:  Wireless  LANs  in 
the  Enterprise  in  PDF  format  today, 
(registration  required) 


•v 


www.nwfusion. com/buzz/2003/ 


NetworkWorld  The  Buxz  Issue  9/29/03  63 


The  service- 
oriented 
architecture 


promises  to 
succeed  where 
others  have 
— faiied-in  buiicU- 
ing  a  network- 


friendly, 

reusaoi&app 

architecture. 


other  SOA  efforts  to  fizzle  —  most  recently  the 
Common  Object  Request  Broker  Architecture 
(CORBA)  and  Distributed  Component  Object 
Model  (DCOM). 

“The  key  feature  of  an  SOA  is  extreme  flexibil¬ 
ity  says  Anne  Thomas  Manes,  research  director 
for  application  platform  strategies  at  Burton 
Group.  “What  you  want  to  do  is  make  all  your 
different  application  systems  act  as  one  huge 
virtual  application  that  has  full  access  to  all  the 
different  capabilities  in  all  the  different  appli¬ 
cations  systems.”  _ 


Manes  says  that  is  in  contrast  to  traditional 
application  systems.  “Today,  you  have  stove 
pipes  in  which  there  is  one  application,  and^' 
that  application  encompasses  all  its  business 
logic,  and  no  other  application  in  your  busi¬ 
ness  has  access  to  that  stuff,  and  so  the  only 
way  to  get  to  it  is  to  go  through  that  specific 
application,”  she  says. 

Because  the  SOA  is  the  step  beyond  point-to- 
point  integration  using  Web  services,  it  promises 
easier  ad  hoc  integration  of  many  services 
while  minimizing  the  typical  integration 
headaches  of  distributed  computing.  With  an 
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loosely— coupled  Web  services  architecture 
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and  Web  services  are  emitting  a  singsong 
chime  these  days,  humming  the  letters  S-O-A. 
Service-oriented  architecture  is  in  the  air. 

SOA  is  the  latest  name  for  an  applications 
architecture  for  sharing  and  reusing  code.  With 
today’s  SOA,  applications  are  built  (or  retrofit¬ 
ted)  with  standard  interfaces  most  often  based 
on  XML  and  its  derivatives:  Simple  Object 
Access  Protocol  (SOAP)  and  Web  Services 
Description  Language.  SOA  also  defines  how 
those  services  are  located,  executed,  managed, 
monitored  and  secured. 

For  example,  a  tax  calculator  service  could  be 
used  by  shipping,  sales  and  purchasing  systems 
instead  of  writing,  rewriting  and  updating  code 
within  each  application  to  calculate  tax.  Credit 
check  and  fraud  “services”  could  be  integrated 
into  a  workflow  for  processing  a  loan.  A  pur¬ 
chasing  system  could  be  broken  into  a  dozen 
services  that  could  be  used  to  support 
other  business  processes. 

Still, SOA  is  an  old  concept  that 
is  generating  new  buzz,  thanks 
to  the  advent  of  Web  services 
and  its  promise  of  open, 
standards-based  inter¬ 
faces. 

“SOA  is  probably  a 
real  nifty  marketing 
term,"  says  .John 
Studdard,  CTO  for 
Lydian  Trust,  a 
financial  services 
company  in  Palm 
Beach  Gardens, 

Fla.“We  call  it  core 
services.  It  is  a 


where  things  can  run  asynchronously  You  have 
a  bunch  of  disparate  services, and  you  can  bring 
all  those  services  together  and  call  it  an  appli¬ 
cation.”  The  company  runs  about  20  core  ser¬ 
vices  that  are  advertised  in  a  registry  and  called 
via  a  URL  to  perform  specific  tasks  or  business 
processes  —  such  as  credit  checks  —  as  part  of 
an  automated  workflow  to  support  loan  pro¬ 
cessing. 

But  in  fact,  an  SOA  doesn’t  require  Web  ser¬ 
vices.  It  only  makes  it  more  flexible  while  easing 
the  sharing  of  services  among  multiple  clients. 
The  lack  of  those  two  characteristics  caused 


SOA,  services  can  reuse  existing  software,  slash 
IT  administration  costs,  simplify  software  up¬ 
grades  and  ease  application  integration  with 
business  partners.  And  an  SOA  will  run  on  exist¬ 
ing  IP-based  networks.  Additional  infrastructure, 
such  as  XML  traffic  accelerators  or  load  balanc¬ 
ing,  are  needed  only  when  services  becomedhe 
dominant  means  for  developing  and  deploying 
applications.  _ 


While  an  SOAs  benefits  are  easy  to  digest,  the 
concept  still  might  be  hard  to  swallow. 


Companies  will  have  to  determine  what  set  of 
software  functions  are  best  converted  into  re¬ 
usable  network  services,  a  process  likely  to  set 
off  political  battles  over  ownership  of  data, 
applications  and  computing  resources. 
Executives  must  be  sold  on  the  SOA  concept, 
which  has  a  poor  track  record.  Also,  Web  ser¬ 
vices  standards  for  reliable  messaging,  security, 
management  and  workflow  are  not  completed- 


John  Studdard,  CTO  at 
Lydian  Trust,  gives  his  take  on  SOA: 

You  have  a  bunch  of 
disparate  services,  and 
you  can  bring  all  those 
services  together 
and  c^ll  it  an 


application. 
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'Mn  CORBA,  you 
had  to  change 
legacy  applica¬ 
tions  to  play,  but 
with  an  SOA  you 
don't  change  the 
bacic-end  applica¬ 
tions.  You  linic 
them  together." 

Msric  Hsynie,  vice  presi¬ 
dent  of  enterprise  exten¬ 
sions,  Micro  Focus 


and  are  required  for  an  SOA  to  be  considered 
enterprise-class. 

Research  firm  ZapThink  predicts  such  issues 
can  be  overcome  and  that  SOAs  will  become 
the  dominant  distributed  computing  approach 
'tsy  2006.  By  2010,  ZapThink  expects  69%  of  the 
total  enterprise  software  market  to  be  service- 
oriented  and  that  the  overall  market  for  prod¬ 
ucts  and  services  that  support  service  orienta- 
-  tion  will  be  more  than 

$98  billion. 

The  third-ti7  charm 

But  before  the  tech¬ 
nology  is  relevant, 
companies  have  to 
choose  the  business 
processes  they  want  to 
convert  into  services. 

“The  biggest  issue  will 
be  looking  at  our  busi¬ 
ness  processes  and 
what  applications  are 
tied  to  those  business 
processes  and  really 
pulling  out  the  func¬ 
tionality  that  can  be 
shared,”  says  Darrell 
Delahoussaye,  portfolio 
manager  for  engineer¬ 
ing,  procurement  and 
construction  systems 
for  Bechtel,  which  is 
headquartered  in  San 
Francisco.  “That  is  a 
tough  one  because  it 
requires  quite  a  bit  of 
investigation,  and  I  can 
guarantee  that  there 

will  be  political  issues.” 

Corporate  executives  also  must  be  educated 
and  convinced  that  a  Web  services  SOA  won’t  re- 
•peat  past  mistakes. 

Experts  say  the  big  difference  is  that  CORBA, 
-DCOM  and  other  approaches  were  rigid. The  ser¬ 
vices  and  clients  were  tightly  coupled  and  the 
Jechnology  proprietary  The  services  were  broken 


into  small,  fine-grained  bits  that  required  lots  of 
chatter  between  the  client  and  the  service  to 
accomplish  a  single  task. 

“With  an  SOA  you  don’t  have  to  program  all  the 
"pieces  of  the  puzzle  like  you  did  with  CORBA,” 
says  Jason  Bloomberg,  an  analyst  with  ZapThink. 
'"  At  the  core  of  an  SOA  are  three  elements  that 


The  heart  of  an  SOA 

A  service-oriented  architecture 
defines  how  all  or  part  of  an 
application  is  made  available  as 
a  service  on  a  network.  The 
application  —  or  service  prt)vider 
—  must  publish  its  features  and 
network  address  in  a  registry 
where  a  consumer  (a  client 
device  or  another  application) 
can  find  it  and  bind  to  the  service. 


Service 


define  a  networked  service:  a  provider,  a  registry 
and  a  consumer.  The  provider  is  the  application 
—  although  sometimes  this  application  is  little 
more  than  a  snippet  of  code  to  perform  a  basic 
task,  such  as  calculating  sales  tax.  The  provider 
sends  descriptions  about  itself  to  the  registry, 
such  as  information  on  what  the  application 
does  and  how  to  connect  to  it.  The  consumer 
(typically  another  application)  uses  the  registry 
to  discover  the  existence  of  various  providers 
and  then  directly  connects,  or  binds,  to  those 
providers. 

SOAs  are  loosely  coupled  in  that  services 
can  be  connected  on  an  ad  hoc  basis,  and 
that  services  and  clients  can  be  changed 
independently  of  one  another.  The  services 
have  standards-based  interfaces  and  are 
coarse-grained  in  that  they  provide  a  distinct 
service  or  business  process,  such  as  the  tax 
calculator  or  issuing  a  purchase  order. 

“If  you  have  a  policy  system  or,  say,  20  policy 
systems,  and  you  don’t  know  which  ones  you 
may  end  up  using  in  a  year, you  build  a  policy 
service  that  does  primarily  what  everybody 
needs,”  says  Dmitry  Tyomkin,  enterprise  archi¬ 
tect  for  CNA  Insurance  in  Chicago.  “Behind 
the  scenes  the  service  may  reroute  the 
request  to  a  legacy  system,  but  tomorrow 
when  we  retire  those  legacy  systems  it  will  be 
transparent  for  the  consumer,  it  won’t  need  to 
change  its  code.” 

CNA  Insurance,  which  was  built  through 
acquisitions,  is  in  the  first  phase  of  an  SOA  to 
integrate  various  systems  and  applications  so 
it  can  respond  better  to  change  and  better 
serve  its  customers. 

Tyomkin  says  a  year’s  worth  of  work  has 
taught  him  that  the  benefit  of  an  SOA  is  best 
viewed  from  a  business  perspective. 

“You  look  at  your  business  needs  and  see  how 
you  can  dissect  your  business  processes  to 
identify  the  reusable  portions,” Tyomkin  says.“lf 
you  feel  there  is  a  significant  demand  for  those 
processes  then  you  are  probably  a  good  candi¬ 
date  for  an  SOA.” 

Build,  don't  buy 

An  SOA  is  something  that  is  built,  not  bought 
as  a  software  suite,  according  to  experts. 
However,  there  are  some  key  pieces  of  software 
that  must  be  purchased.  First  are  the  develop¬ 
ment  tools  from  BEA  Systems,  Borland  Software, 
IBM,  Microsoft  and  Sun  to  build  native  Web  ser¬ 
vices  applications  or  create  interfaces  for  legacy 

applications. 

-  There  also  are  tools 

from  vendors  such  as 
Acucorp,  Fujitsu,  Jacada 
and  Micro  Focus  that 
help  legacy  programs 
written  in  languages 
such  as  COBOL  adapt 
to  an  SOA. 

“In  CORBA,  you  had 
to  change  legacy  appli¬ 
cations  to  play,  but  with 
an  SOA  you  don’t 
change  the  back-end 
applications.  You  link 
them  together,"  says 
Mark  Haynie.vice  pres¬ 
ident  of  enterprise 
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Web  services  vendors 

•Will  my  developers  have  to  change 
their  skills  dramatically  to  design 
applications  or  retrofit  applications  to 
conform  to  the  SOA  model? 

•  How  can  I  adapt  my  current  middle¬ 
ware  infrastructure  to  support  an 
SOA  as  I  am  building  it  out  in  phases? 

•What  middleware  infrastructure  do  I 
need  above  and  beyond  what  I  already 
have  to  support  the  increase  in  XML 
and  SOAP  traffic  once  services  pro¬ 
liferate  on  my  network? 

•Why  will  your  software  be  relevant  in 
three  years  as  a  stand-alone  piece  of 
middleware  and  not  just  a  feature  of 
the  platform  services  available  from 
the  major  vendors  such  as  IBM, 
Microsoft,  Oracle  or  Sun? 


extensions  for  Micro  Focus. 

Independent  software  vendors  also  are  start- 
ing  to  add  native  Web  services  interfaces  to  their 
products  from  ERP  systems  to  collaboratforr~ 
servers. 

Another  key  element  is  SOAP  servers,  with  the - 

dominant  variety  today  being  Web  application 
servers,  although  SOAP  traffic  can  be  carried  by — 
TCP/IP  as  easily  as  it  can  move  over  HTTP 

The  SOA  registry  typically  is  supported  by 
Universal,  Description,  Discovery  and  Integration 
(UDDl),a  Web  services  protocol.  A  UDDI  registry, 
sort  of  a  Yellow  Pages  of  services,  lets  application 
components  be  easily  found,  called  and  reused 
instead  of  being  hard-wired  together.  Companies 
such  as  Fujitsu,  IBM,  Microsoft  and  Novell  offer 

UDDI  registries,  as  do  smaller  vendors  such  as - 

Flashline  and  LogicLibrary  The  latter  also  add 

features  to  help  developers  create,  manage  and - 

monitor  a  collection  of  services. 

However,  a  full-fledged  SOA  is  not  just  abouL...  . 
developing  applications  as  services.  Standards 
for  transactional  messaging,  security,  workflow 
and  management  to  ensure  scalability  and  reli¬ 
ability  are  needed  but  are  still  under  develop¬ 
ment,  and  in  some  cases  competing  protocols 
are  slowing  progress.  Infrastructure  upgrades  to 
middleware  also  will  be  needed  to  handle  the' 
increase  in  XML  traffic  once  services  become 
prevalent.  - 

A  crowd  of  specialized  vendors  offer  to  fill 
those  gaps  with  everything  from  message  control 
systems,  management  platforms  and  XML  traffic 
accelerators.These  vendors  include  AmberFbint, 
Actional,  Blue  Titan,  Cape  Clear,  Confluent, 
DataPower,  Digital  Evolution,  Infravio,  The  Mind 
Electric,  Sarvega,  SeeBeyond,  Sonic  Software, 
Systinet,  Talking  Blocks,  Vordel  and  Westbridge 
Technology 

“The  SOA  is  an  evolutionary  step  in  the  adop¬ 
tion  of  Web  services,"  says  Tyson  Hartman,  a  tech¬ 
nology  fellow  and  director  of  .Net  solutions  for 

consulting  firm  Avanade.The  long-term  benefiLls- - 

not  only  easier  integration,  he  says,  but  a  logical 
method  for  “deploying  a  set  of  services  through 
their  lifetime  on  the  network."B 


The  IP  PBX  company  rated  #1  by  IT  professionals 
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In  a  new  Nemertes  Research  study,  Shoreline  dominated. 

It  was  the  only  company  reviewed  that  specializes  in  IP  PBX 
systems  for  the  enterprise. 

#1  in  every  category. 

Shoreline  was  rated  #1  for  system  ease  of  use,  manageability, 
performance,  technology,  cost  effectiveness  AND  customer 
service.  Rated  #1  for  delivering  just  what  you  want. 


You’ll  get  an  IP  PBX  solution 

that’s  easy  to  install  and  manage,  specifically  designed  for  IP 
Telephony  from  the  start.  With  a  single-system  view  and  the 
ability  to  run  your  entire  multi-site  network,  it  is  the  solution 
that  can  make  your  people  more  productive...  the  solution 
judged  #1  by  the  IT  professionals  who  have  experience 
installing  IP  PBXs. 

For  your  free  copy  of  the  Nemertes  Research  executive  sum¬ 
mary,  visit  our  web  site  at  http://networid.goshoreline.com 
or  call  1-877-80SHORE. 


http://networld.goshoreline.com 
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SEAMLESS  ENTERPRISE  MOBILITY 


The  Convergence  of  WiFi  and  3G 


These  days,  work  doesn't  stop  at  the  office  door. 

As  the  pace  of  business  accelerates  to  a  24/7  global 
sprint,  so  too  does  the  demand  for  seamless  access  to 
valuable  corporate  data.  This  demand  could  come 
from  a  sales  associate  that  needs  access  to  a  database 
at  the  home  office  in  order  to  close  a  deal.  Or,  it  could 
come  from  a  technician  out  in  the  field  who  needs 
access  to  complex  data  or  schematics  to  repair  equip¬ 
ment.  But  as  users  increasingly  push  the  boundaries 
of  corporate  information  access,  it  becomes  evident 
that  informed  executives  will  integrate  mobile  access 
options  to  create  comprehensive  solutions  through 
seamless  roaming. 

By  understanding  how  WiFi  can  be  integrated  with 
3G  mobile  high-speed  data  (MHSD)  networks,  enter¬ 
prises  can  extend  its  effectiveness  over  a  wider  area 
and  increase  the  business  value  of  mobile  data. 
Instead  of  searching  for  a  WiFi  facility,  mobile  work¬ 
ers  can  have  uninterrupted  high-speed,  "always-on" 
data  connections.  This  "wide-area"  approach  to 
MHSD  networking  not  only  enables  higher  productiv¬ 
ity,  but  it  can  support  smart  new  business  processes 
that  put  staff  closer  to  customers  —  with  essential 
tools  and  information  right  at  hand. 

Why  Integrate  WiFi/WLAN  and  3G  Technologies? 

To  begin  with,  WiFi  networks  have  a  limited  range 
—  generally  around  300  feet,  although  it  varies  by 
equipment  manufacturer.  This  is  because  WiFi  net¬ 
works  were  initially  designed  to  extend  enterprise 
networks  without  the  burdensome  cabling  of  fixed 
LANs,  which  is  why  they're  also  known  as  wireless 
LANs  or  WLANs.  Now,  however,  WiFi  is  used  for 
more  than  wireless  high-speed  data  on  company 
premises.  A  new  breed  of  operator,  known  as  wireless 
Internet  service  providers  (WISPs),  is  using  WLAN 
standard  IEEE  802.1  Ib  to  extend  broadband  access  to 
public  hot  spots,  such  as  airports,  hotels,  conference 
centers  and  cafes. 

Despite  this  expansion  in  usage,  WiFi's  limited  range 
makes  it  impractical  as  a  technical  and  economic 
alternative  to  3G  technologies  for  ubiquitous  wide  area 
coverage.  And  when  you're  concerned  about  security, 
3G  is  the  way  to  go.  3G  networks  —  unlike  WiFi  —  use 
inherently  secure  'spread  spectrum'  technology,  which 
creates  highly  secure  wireless  air  links  through  sophis¬ 
ticated  coding  and  algorithms.  3G  technologies  also 
authenticate,  or  validate  the  users  accessing  the  system. 
As  a  result,  businesses  that  seamlessly  integrate  these 
two  types  of  mobile  technology  will  gain  greatest 
advantage  Irom  mobile  data  solutions  —  just  as  they 
gain  more  power  and  convenience  by  integrating  wire- 
line  LANs  and  WANs. 


The  greatest  benefit  comes  from  expanded  cover¬ 
age.  By  integrating  WiFi  networks  with  3G  resources, 
telecommunications  operators  can  extend  mobile 
high-speed  access,  in  more  locations,  faster.  Many 
mobile  professionals  already  have  IEEE  802.1  lb- 
enabled  laptops  and  personal  digital  assistants  (PDAs) 
that  they  use  in  WiFi  hot  spots.  Integrated  3G  mobile 
solutions  leverage  these  existing  locations  —  and 
extend  them  by  giving  end  users  the  ability  to  roam 
seamlessly  across  the  wider  area  supported  by  3G  net¬ 
works.  Users  won't  even  notice  the  switch  between 
the  two  technologies  —  they  will  experience  one  con¬ 
tinual  application  session.  Lucent  uses  an  IETF  proto¬ 
col  called  Mobile  IP  to  make  these  handoffs  seamless. 

Integrating  WiFi  and  3G  technologies  can  reap 
some  rich  business  rewards,  including: 

General  Access  to  intranet  Resources.  A  great 
deal  of  valuable  information  resides  on  company 
intranets;  integrating  WiFi  and  3G  means  that 
employees  can  access  that  data  anytime,  anywhere. 
As  a  result,  workers  can  save  time  and  increase  pro¬ 
ductivity. 

Vertical  and  Enterprise  Applications.  Many 
professionals  in  areas  such  as  field  sales  and  service, 
healthcare,  real  estate  and  finance  require  easy, 
portable  access  to  applications,  both  on  the  corporate 
premises  —  best  achieved  by  the  company's  wireless 
LAN  —  and  off  premises  —  where  3G  technology 
works  best. 

Productivity  Improvements.  Continuous 
access  to  mission  critical  data  presents  a  valuable 
opportunity  for  businesses  to  gain  a  competitive  edge. 
For  example,  fast  access  to  product  information  and 
part  numbers  can  speed  the  sales  and  order  processes 
and  increase  customer  satisfaction. 

The  bottom  line  is  giving  businesses  the  ability  to 
securely  access  mission  critical  data  anytime,  any¬ 
where  —  and  any  technology  that  helps  corporations 
do  that  is  a  true  business  enabler.  There  are  other 
interoperability  protocols  out  there,  but  Lucent  backs 
Mobile  IP  for  some  very  important  reasons:  It  enables 
WLAN  and  3G  networks  to  work  together  with  mini¬ 
mal  changes,  and  keeps  the  two  technically  independ¬ 
ent;  it  can  be  extended  to  wireline  networks;  and  it's 
an  IP-based,  data-centric  solution. 

Continual  network  service  was  once  a  dream, 
but  with  new  services,  range  and  security  enabled 
by  3G,  along  with  the  ability  to  seamlessly  roam 
among  WLANs  and  WiFi  hot  spots,  companies  can 
make  it  a  reality. 


This  IETF  protocol,  defined  in  RFC3344, 
enables  mobility  at  the  network  layer  —  and 
allows  a  mobile  device,  such  as  a  laptop  or 
PDA,  to  change  its  location  without  the 
need  to  restart  applications  or  terminate  and 
re-establish  an  ongoing  connection. 

To  gain  the  benefits  of  the  Mobile  IP 
protocol,  end  users  must  install  an  appropri¬ 
ate  mobile  "client"  onto  the  data  devices 
they  will  use.  Then  they  simply  log  into  this 
software  using  their  chosen  passwords.  After 
activating  the  session,  users  will  be  able  to 
move  from  one  area  of  coverage  to  another, 
or  to  a  different  system,  with  no  noticeable 
change  in  service  other  than  a  slight  momen¬ 
tary  pause. 

For  example,  a  sales  professional  on  the 
road  could  check  his  email  on  a  WLAN  at  a 
cafe  offering  WiFi  access  and  learn  his  client 
is  ready  to  meet,  twenty  miles  away.  During 
the  meeting,  he  is  able  to  access  his  client's 
data  and  pricing  information  via  3G  coverage 
and  close  the  deal  on  the  spot,  all  without 
interrupting  the  data  session. 

When  it  comes  to  setting  up  an  integrated 
solution,  3G  architectures  remain  unchanged  by 
the  introduction  of  WiFi/WLAN  access.  When 
using  Mobile  IP,  the  integrated  WLAN  solution 
includes  two  additional  elements  in  a  mobile 
operator's  network:  a  Mobile  IP  Home  Agent 
(HA)  and  a  Foreign  Agent  (FA).  The  HA  is  a 
router  located  on  a  mobile  node's  home 
network  that  maintains  the, current  location 
for  each  departed  mobile  node  and  tunnels 
the  received  packets  for  the  mobile  node  to 
its  current  location.  The  FA  router  resides  on 
the  visited  network  of  a  mobile  node  (either 
WLAN/WiFi  hot  spot  or  3G  network)  and  sup¬ 
ports  the  registration  of  the  mobile  node, 
upon  attachment,  and  enables  the  mobility 
process  by  co-operating  with  the  Home 
Agent. 

Even  when  applications  do  not  require 
seamless  connectivity,  the  integration  of 
WiFi/WLAN  and  3G  offers  valuable  benefits 
for  the  user  experience.  Mobile  professionals 
who  use  these  solutions  are  never  required  to 
know  the  type  of  coverage  that  is  delivered  in 
each  location  —  and  whether  it's  going  to 
change.  The  Mobile  IP  client  hides  the  com¬ 
plexity,  making  the  user  experience  simple 
and  seamless. 


Lucent  Technologies 

Bell  Labs  Innovations 
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ou  wake  up  and,  after  sufficient 
.  amounts  of  caffeine,  turn  on  your 
mobile  network  device  of  choice. 
Five  e-mails  grace  your  in-box,  three  of 
them  urgent.  A  quick  glance  at  your  workgroup 
buddy  list  reveals  your  boss  is  already  in  the 
office,  but  the  icon  next  to  her  name  indicates 
she  doesn’t  want  calls.  Your  calendaring  appli- 
"cation  shows  a  customer  meeting  at  9  a.m.,  so 
you  tap  the  “Today”  icon  and  an  alert  goes  out  to 
your  staff  and  colleagues  that  you’ll  be  out  of 
the  office  till  late  morning. 

Later,  arriving  for  your  appointment,  you  finish 
a  voice  mail  to  a  friend  about  basketball  tickets. 
Your  mobile  device,  detecting  your  rights  on  the 
customer’s  Wi-Fi  network,  seamlessly  moves  the 
call  from  the  your  cellular  network  to  the  wire¬ 
less  LAN.  You  don’t  get  dinged  for  the  roaming, 
thanks  to  the  chip-level  authentication  your 
mobile  device  uses  and  the  corporate  roaming 
agreement.  When  your  meeting  starts,  your 
-mobile  device  knows  not  to  ring  audibly, 
although  color-coded  instant  messages  might 
pop  up. 

Cool,  yes.  Feasible,  no. You’ve  got  all  the  pieces 
at  your  disposal  and  can  use  some  in  combina¬ 


The  converged  mobile  future 

Convergence  of  wireless  network,  application  and  device  types  has 
begun,  but  likely  won’t  produce  fully  persistent  applications  for  at  least 
three  years,  according  to  Gartner. 
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tion  today  but  the  applications,  the  devices  and 
the  network  infrastructure  are  not  yet  agile 
enough  to  support  such  a  connected  user.  Such 
convergence  is  at  least  three  years  away,  analysts 
and  users  estimate. 

As  George  Surdu,  director  of  IT  infrastructure 
for  Ford  Motor  in  Detroit, says:“We’ve  got  it  all  — 
Wi-Fi,  bar-code  scanners,  cell  phones,  PDAs  — 
but  it’s  tough  plugging  it  all  together” 

From  MAN  and  UN  to  WLAN 

Disparate  wireless  networks  likely  will  come 
together  before  convergence  at  the  application 
and  device  levels. 

In  today’s  wireless  WAN  world,  AT&T  Wireless 
and  Cingular  could  support  roaming  between 
their  networks,  which  rely  on  Time  Division 
Multiple  Access  (TDMA)  technology  But  they 
couldn’t  offer  roaming  between  their  networks 
and  the  Code  Division  Multiple  Access  (CDMA)- 
based  network  of  either  Sprint  PCS  or  Verizon 
Wireless.  The  TDMA  and  CDMA  systems  send 
and  receive  information  differently  But  as  sili¬ 
con  changes  and  multi-mode  phones  become 
available  —  already  happening  in  Europe  and 
expected  stateside  next  year  —  users  will  be 
able  to  roam  between  TDMA 
and  CDMA  networks  world¬ 
wide.  Carrier  adoption  of  the 
International  Telecommu¬ 
nication  Union  3G  digital  cel¬ 
lular  technology  also  will 
facilitate  such  roaming.  Be¬ 
sides  being  able  to  handle 
TDMA  and  CDMA  interfaces, 
3G  networks  can  carry  data 
at  speeds  ranging  from  128K 
to  2M  bit/sec.  US.  carriers  are 
expected  to  begin  3G  roll¬ 
outs  next  year. 

Cellular  providers,  ever 
keen  to  exploit  a  revenue 
opportunity  in  an  otherwise 
flat  commodity  market,  also 


now  are  focusing  outside  their  traditional  WAN 
purview.  Most  are  trying  to  figure  out  how  to  get. 
into  the  Wi-Fi  hot-spot  business  so  their  users 
will  be  able  to  tap  the  cellular  network  for  voice 
calls  and  high-speed  hot-spot  access  to  corpo¬ 
rate  resources  or  the  Internet.  IEEE  802.1 1 -based 
hot  spots  offer  access  at  rates  of  IIM  or  54M 
bit/sec,  depending  on  what  version  of  the  wire¬ 
less  Ethernet  standard  is  supported. 

“We  view  3G  and  Wi-Fi  as  complementary’ says 
Bill  Stone,  executive  director  of  technology 
development  for  Verizon  Wireless.  To  that  end, 
the  carrier  in  August  said  it  would  work  with 
hot-spot  builder  Wayport  to  provide  Verizon 
u,sers  with  access  to  hundreds  of  hot  spots 
nationwide.  Sprint  PCS  cut  a  similar  deal  with 
Wayport  and  Airpath  Wireless  for  2,100  hot  spots 
by  year-end. 

Hot  spots  might  work  well  for  itinerant  users, 
but  they  will  remain  as  access  points  for  fixed 
data  applications.  Those  users  cannot  expect  to 
walk,  or  drive, out  of  hot-spot  range  and  have  the- 
Wi-Fi  provider  hand  off  their  e-mail  sessions  to 
their  cellular  operators,  for  example.  Neither  the 
roaming  nor  the  application  persistence  works. 

For  users,  the  application  persistence  seems  to 
be  the  bigger  of  the  two  problems.  Late  last  year. 
Sprint  surveyed  several  of  its  users  in  health¬ 
care,  telemetry  and  transportation  who  said 
resoundingly  that  they  need  application  persis¬ 
tence,  not  seamless  roaming. “Those  who  need¬ 
ed  to  be  able  to'  move  between  3G  and  Wi-Fi 
were  few  and  very  far  between,”  says  Wes 
Dittmer,  senior  director  of  business  develop¬ 
ment  for  Sprint  PCS. 

The  lETF’s  proposed  Mobile  IP  (MIP)  specifi¬ 
cation  (RFC  2002)  goes  toward  solving  these 
problems.  MIP  will  let  users  roam  by  giving  them 
a  fixed  “home”  IP  address  and  a  “care-of"  address 
that  changes  at  each  point  along  their  wireless 
trajectory.  And  while  it  might  not  provide  for 
wireless  persistence  single-handedly,  MIP  will  go 
a  long  way  toward  enabling  it.  While  router  ven¬ 
dors  are  working  on  their  own  versions,  these 
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_will  not  likely  be  ready  for  deployment  or 
widescale  use  for  a  few  years.  Again,  many  secu¬ 
rity  issues  arise  over  the  discovery,  registry  and 
tunneling  of  the  care-of  address. 

Mobilize  those  apps 

The  persistence/roaming  isn’t  holding  back 
“deployment  of  applications  such  as  e-mail, 
instant  messaging  —  with  or  without  presence 
—  and  Short  Message  Service  (SMS)  on  wireless 
networks.  Gartner  says  wireless  messaging  is 
today’s  fastest-growing  enterprise  wireless  data 
application.  The  research  firm  predicts  that 
jnobile  SMS  and  instant  messaging  will  become 
a  regular  part  of  mobile  communications  in  the 
next  two  years. 

Other  applications  will  move  increasingly  into 
the  wireless  realm,  too. “For  every  vertical,  there 
are  two  or  three  key  applications  that  are  essen¬ 
tial  to  running  the  business  and  would  benefit 
from  mobilization,”  says  Dan  MacDonald,  head 
vice  president  of  Nokia  Internet  Communica- 
tions.“Make  it  accessible  and  useable  with  small 
screens,  and  you’ve  got  a  killer  app.” 

Toward  that  end,  Nokia  in  May  acquired  Eizel 
Technologies,  whose  software  platform  “mobi- 
Jizes”  applications  for  the  wireless  environment, 
MacDonald  says.  Other  efforts  to  make  business 
applications  suitable  for  use  over  mobile  net- 
"^works  include  Motorola’s  Cellular  Digital  Packet 
Data  standard  that  ported  messaging  and  dis¬ 
patch  applications  into  the  wireless  realm. 

Any  presence-based  application  will  require 
-making  signal  availability  more  automated,  says 
Dave  Werezak,  vice  president  of  marketing  for 
-Research  in  Motion.  If  users  have  to  keep  reset¬ 
ting  availability  and  presence  data,  then  as  a 
practical  matter  people  won’t  use  wireless  appli¬ 
cations.  “But  we  can  combine  someone’s  loca¬ 
tion  with  presence  and  use  data  to  say'lf  I’m  not 
at  my  desk  or  am  in  this  meeting  room,  consider 
me  unavailable,”’  he  says,  explaining  that 
Tjeneral  Packet  Radio  Service  (GPRS),  a  3G  cel¬ 
lular  technique  for  sending  short  bursts  of  data 
such  as  e-mail  and  instant  messages,  might  be 
one  approach. 

Because  GPRS  can  be  used  onTDMA  or  CDMA 
networks,  and  presence  is  being  built  into  hand¬ 
sets,  “We  could  see  it  sooner  rather  than  later,” 
perhaps  within  the  next  few  years,  he  adds. 

Having  the  operating  system  on  the  device,  as 
opposed  to  using  an  appliance,  should  make 
presence  more  widely  available  and  convergent 
applications  more  real, says  Mike  Wehrs,  director 
of  technology  and  standards  for  Microsoft.  The 
operating  system  deals  with  the  network,  as  it 


Questions  for  your 
wireless  network  operators, 
mobile  device  vendors  and 
application  software  providers 

•  How  do  you  plan  to  merge  wide-area 
cellular  with  local-area  hot  spots?  Do 
you  offer  discounts  and  a  single  bill  for 
roaming  between  them? 

•  Do  you  have  the  level  of  security  we 
need  integrated  into  your  service/prod¬ 
uct,  or  will  we  have  to  layer  it  in  on  top 
ourselves? 

•Will  your  wireless  security  architecture 
leverage  our  existing  enterprise  security 
infrastructure,  or  will  we  need  to  deploy 
yours  or  another  vendor-/product-specific 
security  infrastructure  to  support  your 
wireless  product/service? 

•  What  are  your  plans  to  support  the 
emerging  IEEE  802.11  wireless  Ethernet 
standards  such  as  "a"  and  ‘T’? 

•  How  well  does  your  application  deal 
with  an  intermittent  network  connection? 

•  What  can  you  do  to  ensure  important 
business  applications,  such  as  CRM,  are 
ready  for  wireless  networking  or  con¬ 
verted  for  easy  use? 

•  How  do  you  measure  user  downtime, 
and  what  processes  do  you  have  in  place 
to  support  six-sigma  level  of  commit¬ 
ment? 

•  Can  you  demonstrate  the  ability  to  pro¬ 
tect  handsets,  call  processing  engines 
and  gateways  from  security  threats  such 
as  a  virus  or  denial-of-service  attack? 

•  What  changes  are  you  making  at  Level 
1  support  desks  to  handle  the  increased 
complexity  around  fault  isolation  on  a 
converged  network? 

•  What  standard  IP  quality-of-service 
mechanisms  have  you  deployed? 


does  for  the  location-based  E91 1  services  man¬ 
dated  for  cellular  networks,  rather  than  the  user, 
he  says.  AT&T  Wireless  is  demonstrating  pres¬ 
ence  technology  and  is  expected  to  offer  a  com¬ 
mercial  service,  although  it  hasn’t  set  a  date. 

Recipe  for  clunky  devices? 

Chips  might  get  smaller,  less  expensive  and 
more  sophisticated,  but  users  still  need  the  right 
mobile  tools.  As  one  analyst  notes,  convergence 
might  help  mobile  users  eliminate  a  PDA,  cell 
phone,  pager,  laptop  or  PC  card,  but  will  never 


SVIulti-mode  chips  that  will  handle  things  like 
least-cost  routing  are  most  likely  to  go  into  PDAs 
fk-'st  and  high-end  mobile  phones.  .  .  We're  not 
^/r-^ing  a  lot  of  integration  on  the  chip  side 
t\-veen  Wi-Fi,  GSM  and  TDMA." 

Greg  Collins,  direotor,  Dell'Oro  Group 


get  them  down  to  one  device.  Voice  telephony 
can  be  integrated  into  anything,  but  data  needs 
a  larger  display  and  keyboard  than  many 

mobile  devices  offer.  Ask  early  users  of  the  so _ 

called  wireless  Web  of  a  few  years  ago  —  they’ll 

still  likely  gripe  about  slow  downloads  and _ 

crummy  graphics. 

Multi-mode  chips  that  will  handle  functions 
like  least-cost  routing  are  most  likely  to  go  into 
PDAs  first  and  high-end  mobile  phones,  says 
Greg  Collins,  a  director  for  Dell’Oro  Group.“But 
frankly,  we’re  not  seeing  a  lot  of  integration  on 

the  chip  side  between  Wi-Fi,  GSM  and  TDMA,”- - 

he  says. 

GSM  is  TDMA-based  and  a  widely  used  digital - 

cellular  standard  everywhere  but  North 

America.  At  least  right  now  vendors  want  chips _ 

that  combine  DSL  and  Wi-R  so  they  can  provide 

landline  and  wireless  connectivity  from  a  single _ 

device,  he  adds. 

Nokia’s  MacDonald  is  a  bit  more  bullish,  not¬ 
ing  that  the  PC  card  is  a  transitional  device. 

He  says  mobile  phones  with  3G,  Wi-Fi  and 
Bluetooth  capabilities  will  be  available  within 
the  next  two  years.  Bluetooth,  originated  sev¬ 
eral  years  ago  by  Ericsson,  IBM,  Intel,  Nokia - 

and  Toshiba,  is  a  specification  for  so-called 

personal-area  networks.  Its  signal  has  a  short _ 

reach  and  enables  connectivity  among  differ¬ 
ent  wireless  device  types  and  networks  on_a _ 

more  dynamic  and  personal  level,  for 
instance  as  a  user  progresses  through  a  shop¬ 
ping  mall.“lt’s  only  the  early  adopters  who  can 
stomach  it  right  now  to  accomplish  a  lot  of 
this,”  he  adds.  “It  has  to  get  simpler  for  the 
adoption  to  take  off.” 

Nokia  and  others  are  watching  to  see  how  users - 

receive  the  Mio8380,  a  mobile  phone  that  plays 

music,  sends  e-mail  and  takes  pictures.  It’s  hardly - 

revolutionary  but  it  is  the  first  to  use  Microsoft’s 

Smartphone  2002  operating  system  and  Intel’s _ 

PXA255  200-MHz  processor.  The  phone  will  be 
available  this  fall  in  Europe  for  $600.  _ 

While  the  unit  is  more  a  consumer  play,  its  abil¬ 
ity  to  handle  multiple  applications  of  varying 
bandwidth  requirements  portends  good  things 
for  enterprise  users  looking  for  a  richer  all-in- 

one  or  more-in-one  device.  And  as  the  debut  of - 

Microsoft  and  Intel  into  the  handset  realm,  it 

likely  will  force  Ericsson,  Motorola,  Nokia  and - 

others  to  hasten  their  own  convergence  devel¬ 
opments  for  business  users.  _ 

RIM’s  Werezak  says  the  industry  can  combine 

as  many  technology  types  into  silicon  as  it _ 

likes,  but  for  each  different  radio  technology 
added  to  the  chip,  another  antenna,  code  stack, 
software  and  electronics  have  to  be  added  to 
the  hardware. 

“We  anticipate  a  converged  wireless  handheld 
that  would  support  WAN  and  Wi-R  subscrip¬ 
tions,  but  it  would  be  bigger,  more  expensive - - 

and  have  a  shorter  battery  life  than  the 

BlackBerry  or  any  other  existing  mobile  device," - 

he  cautions. 

So  while  convergence  of  wireless  networks. _ _ 

applications  and  devices  is  still  a  few  years  out, 
customers,  vendors  and  service  providers  all  are 
focused  on  the  potential. 

Sweeney  is  a  writer  and  editor  in  Los  Angeles 
who  has  covered  IT  and  networks  for  20  years. 

He  can  reached  at  terry@tsweeney.com. - 
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Alcatel 

(800)  995-2612 
vyww.ind.alcatel.com 

Our  next-generation  IP  Networking  switches 
consist  of  chasis-based  solutions,  the 
OmniSwitch  7000  series  and  the 
OmniSwitch  8800,  and  a  stackable  solution, 
the  OmniSwitch  6600  series,  which  offers  a 
unique  "virtual  chassis"  capability.  Alcatel's 
IP  telephony  solution  is  the  OmniPCX 
Enterprise,  which  addresses  all  the  needs  of 
the  enterprise  and  allows  you  to  build,  at 
your  own  pace,  a  cost-effective,  easy  to 
manage  network.  Alcatel,  a  Global  500  com¬ 
pany  operating  in  130  countries,  is  a  world¬ 
wide  leader  in  telecommunications  and 
Internet  technology.  For  more  than  a  century 
Alcatel  has  engineered  and  delivered  inno¬ 
vative,  highly  awarded,  best-of-breed  tech¬ 
nology.  Alcatel  is  a  primary  source  of  new 
technologies  for  the  telecommunications 
industry  and  has  over  25,000  technology 
patents  that  span  carrier,  enterprise,  optical, 
satellite,  submarine,  and  mobile  networks. 


Avocent  Corporation 
DSR4010  and  DSView  Software 
(256)  430-4000 
vyvyw.avocent.com 

Avocent's  DS  Series  is  the  only  KVM  over 
IP  system  that  gives  you  secure,  centralized 
control  of  your  entire  data  center  -  servers, 
power  devices  and  even  environmental  sys¬ 
tems.  DSView™,  the  management  software 
cornerstone  of  the  DS  Series,  features  sin¬ 
gle  sign-on  centralized  authentication, 
advanced  audit  log  reporting  and  integrated 
power  management. 


@  BELLSOUTH 

Listening.  Answering." 

BellSouth 

BellSouth®  Metro  Ethernet  Service 
wvyw.bellsouth.com/business/answers 

BellSouth  provides  innovative  voice  and 
data  networking  solutions  for  businesses, 
delivering  the  communications  capabilities, 
enhanced  security  and  reliability  that  cus¬ 
tomers  require.  As  a  leading  provider  of 
Ethernet  services,  BellSouth  allows  enter¬ 
prises  to  customize  speeds  of  10, 100  or 
1000  Mbps  at  various  locations  to  most 
effectively  meet  network  requirements. 


ENTERASYS 

NETWORKStm 

Enterasys  Networks 
Enterasys  Matrix  N-Series 
(978)  684-1000 
vyvyw.enterasys.com 

Business-Driven  Networks™  for  Enterprise- 
Class  Customers.  With  a  comprehensive 
product  portfolio —  including  the  break¬ 
through  Matrix™  N-Series  multilayer  switch 
platform  —  Enterasys  provides  Business- 
Driven  Networks™  to  the  world's  most  suc¬ 
cessful  enterprises.  Leveraging  the 
advanced  performance,  scalability  and 
manageability  found  in  innovations  like  the 
Matrix,  Enterasys  develops  integrated  solu¬ 
tions  that  deliver  business  value,  while  low¬ 
ering  IT  costs  and  mitigating  security  risks. 


EQUINOX' 

an  Avocent  Company 

Equinox 

Network-Based  Serial  Connectivity 

Products 

(800)  275-3500 

wvyw.equinox.com 

Equinox  develops  and  markets  high- 
performance,  reliable  and  cost-effective 
serial  connectivity  products.  The  Equinox 
SuperSerial  product  line  provides  the  per¬ 
fect  serial  connectivity  solution  for 
Retail/POS,  Access  Control,  Secure 


Console  Port  Access,  Process  Control, 
Industrial  Automation,  Dial  Access  and  a 
wide  variety  of  custom  applications. 


Digital  V6 
(905)  513-3107 
yyww.digitalvO.com 

Digital  V6  Corp.  specializes  in  developing 
innovative  remote  network  management 
hardware  and  software  solutions.  Digital  \/6 
was  the  first  to  introduce  an  over  IP  KVM 
device  with  automatic  server  monitoring, 
notification  and  remote  power  control, 
known  as  the  Kaveman.  Available  in  single 
and  eight  channel  versions,  Kaveman  gives 
network  administrators  complete  remote 
control  of  servers  via  a  web  browser,  down 
to  the  BIOS  level. 


eEye  Digital  Security 
Retina  Network  Security  Scanner 
(866)  339-3732/(949)  349-9062 
www.eEye.com 

From  eEye  Digital  Security,  Retina  Network 
Security  Scanner  enables  organizations  of 
any  size  to  guard  against  worms,  attacks 
and  other  intrusions  by  regularly  testing  the 
integrity  of  your  network  to  uncover  and  fix 
potential  security  weaknesses.  A  free  trial 
of  Retina  can  be  downloaded  from  the  eEye 
website. 
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Foundry  Networks 
IronPoint  200  Access  Point 
(408)  586-1700 
www.foundi^net.com 

The  IronPoint™  200  AP  is  one  of  the  first 
industry-standard,  enterprise-class  wireless 
access  points  with  802.1  la/b/g  support.  It 
has  a  modular  architecture  making  it  field 
upgradeable,  a  high  performance  processor, 
large  memory  capacity  for  scalability  and  a 
rich  feature  set  including  strong  security.  It 
can  be  used  as  a  standalone  AP  or  in  concert 
with  Foundry's  wireless-capable  switches. 
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Global  Technology 
Associates,  Inc. 

(800)  775-4482 
www.gta.com 

GB-IOOO  Firewall/VPN  Appliance,  using  ICSA 
4.0  corporate  certified  GNAT  Box  system 
software,  offers  unlimited  user  licenses, 
transparent  NAT,  built-in  IPSec  VPN,  four 
10/100  Ethernet  interfaces,  DCHP  server, 
DNS  server,  secure  remote  management 
and  content  filtering  in  a  1RU  case.  High 
Availability,  gigabyte  Ethernet  and  additional 
interfaces  are  optional. 


MRV  Communications,  Inc. 

Do  It  Yourself  WDM  with  Pluggable 
Optics 

(818)  773-0900 
www.mrv.com 

The  modular  building  blocks  of  MRV's  Do  It 
Yourself  WDM  with  Pluggable  optics  provide 
flexible  alternatives  to  costly  WDM  equip¬ 
ment  for  use  in  enterprise  applications  such 
as  campus  environments  or  between  physi¬ 
cally  separated  business  locations.  When 
connected  together,  these  products  can 
form  WDM  systems  capable  of  up  to  16 
wavelengths  for  various  traffic  types. 


Lucent  Technologies 

Bell  Labs  Innovations 

Lucent  Technologies 
3G  Mobile  High-Speed  Data 
(888)  4  LUCENT  (458-2368) 
www.lucent.com 

Lucent  Technologies  is  at  the  forefront  of 
mobile  technology,  enabling  3G  mobile  high¬ 
speed  data  networks.  Only  3G  gives  you 
always-on,  high-speed  data  access,  without 
the  limitations  of  wired  connections.  Your 
company  can  reach  a  whole  new  level  of 
productivity  —  and  develop  innovative  busi¬ 
ness  processes  that  put  you  ahead  of  the 
competition. 


Ne»t£>upp^t 

NetSupport,  Inc. 

NetSupport  Manager  PC  Remote 
Control  Software 
(888)  665-0808 
www.netsupport-inc.com 
Perform  remote  support  and  management 
on  multiple  systems  simultaneously  over  a 
LAN,  WAN  and  Internet  with  this  powerful 
PC  remote  control  software.  NSM  provides 
speedy,  secure  remote  PC  access,  dynamic 
inventory,  automated  scripting,  file  transfer, 
system  monitoring,  help  requests  and  more. 
Network  Computing  Editor's  Choice  Award 
winner. 


nexhraOne 

NextiraOne 
(713)  307-4000 
www.Nextira0ne.com 

NextiraOne  is  a  client-focused  provider  of 
communications  solutions  and  managed  serv¬ 
ices.  With  nearly  $2  billion  in  revenues  and 
over  9,000  employees  worldwide,  NextiraOne 
plans,  implements  and  manages  voice,  data 
and  converged  communications  solutions  for 
enterprise  and  general  business  clients. 
NextiraOne  is  owned  by  Platinum  Equity. 


omnriotn  and  accurate  as  possible.  Network  Vltorid  is  not  liable  for  errors  or  omissions. 


Quantum 

L-Serles,  M-Series,  PX-Series  and 
DX-Series 

(800)  677-6268/(949)  856-7800 
www.quantum.com 

Ouantum  is  also  a  leader  in  automated  tape 
libraries  and  disk-based  enhanced  backup 
solutions  used  to  manage,  store  and  transfer 
data.  From  the  desktop  to  the  data  center, 
Ouantum  offers  the  reliable  products  and 
proactive  services  that  give  customers 
confidence  in  their  data.  Products  include: 
L-Series,  M-Series,  P-Series  and  DX-Series. 
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computing 
initiatives 
dominate 
product  road 
maps,  but  so 
far  no  one 
vendor  has 
delivered 


cente 


fully  on  the 
technology’s 
promise. 


hey  might  use  differ¬ 
ent  buzzwords  — 
adaptive,  organic, 
on-demand  —  but 
just  about  every 
management,  systems,  server  and 
storage  vendor  is  focused  on  the 
same  thing:  bringing  enterprise  com¬ 
panies  to  data  center  nirvana. 

In  this  glorious  state, generally  known  as 
utility  computing,  hardware  never  would  be 
over-provisioned,  problem  solving  would  be 
handled  proactively  rather  than  reactively  and 
minimal  labor  would  be  required  to  roll  out 
new  applications,  provision  servers  and  support 
users. Utility  computing  products  run  the  gamut, 
from  server  and  storage  virtualization,  vulnera¬ 
bility  assessment,  middleware  integration  and 
business  process  modeling  to  the  umbrella  of 
automated  management.  And  vendors  pitching 
the  idea  are  as  varied  as  IBM,  Microsoft  and 
Veritas  Software. 

But  utility  computing  products  still  are  imma¬ 
ture,  with  no  suite  from  a  single  vendor  capable 
of  delivering  on  the  overall  promise.  Industry 
watchers  don’t  expect  to  see  data  centers  run¬ 
ning  entirely  on  the  utility  computing  model  for 
at  least  three  to  five  years,  and  some  say  seven  to 
10  years  is  a  more  realistic  expectation. 

That  leaves  users  to  toy  around  with  early 
products  that  provide  some  utility  computing 
functions  while  closely  watching  develop¬ 
ments  and  wondering  if  everything  eventually 
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Questions  for  your 
utility  computing  vendors 

•Will  adopting  a  utility  computing  model  require  changes  to 
the  hardware  and  software  infrastructure?  If  yes,  what  needs 
to  be  changed?  Will  new  hardware  be  required,  will  servers 
need  to  be  consolidated,  and  will  software  need  to  be 
upgraded  or  integrated? 

•  Does  the  product  virtualize  storage,  server,  network  and 
application  resource  pools  to  make  the  entire  data  center 
appear  as  one  operating  environment  sharing  those 
resources?  Can  it  do  so  across  multiple  data  centers? 

•  Can  the  product  automate  the  provisioning  of  new  servers 
and  roll  back  applications  to  the  previous  versions  if  a  soft¬ 
ware  code  or  application  performance  error  occurs? 

•  How  does  the  product  correlate  business  processes  with 
application  performance  on  the  underlying  infrastructure  that 
supports  those  apps?  And  how  much  upfront  manual  configu¬ 
ration  is  required? 

•  Is  policy-based  management  used  in  the  product  —  meaning, 
will  mission-critical  applications  get  network,  server,  storage 
and  other  resources  over  other  applications  that  have  been 
assigned  a  lower  priority? 


will  gel,  as  vendors  propose  it 
will.  For  example,  at  Weight- 
Watchers.com,  IT  is  automating  server 
management  and  provisioning,  but  isn’t  adopt¬ 
ing  a  utility  computing  model  outright,  says 
Mark  McNamara,  IT  director  at  the  New  York 
company.  “All  the  utility  computing  hype  from 
the  big  hardware  vendors  is  focused  on  virtu¬ 
alization.  But  the  biggest  challenge  is  manag¬ 
ing  the  variety,  complexity  and  frequency  of 
change  inherent  to  a  multivendor  infrastruc- 
ture,”he  says. 

Toward  that  end,  WeightWatchers.com  six 
months  ago  rolled  out  BladeLogic  Operations 
Manager  software  to  track  configurations  and 
changes  across  about  300  Compaq/HP  servers 
in  three  data  centers.  “We  need  the  ability  to 
make  any  type  of  change  across  multiple  plat¬ 
forms  [by  using  administrators  with]  various 
skill  levels,  and  we  need  a  smooth  migration 
path  to  get  there,”  he  says. 

Four  tenets  of  utility  computing 

McNamara  touches  on  utility  computing’s 
must-haves.  Vendors,  analysts  and  corporate  IT 
managers  mostly  agree  that  utility  computing 
requires  management  and  other  technologies 
that  centralize,  integrate,  virtualize  and  auto¬ 
mate  the  IT  infrastructure  and  the  applications 
running  on  it.  For  enterprise  data-center  man¬ 
agers,  this  means  rethinking  the  traditional 
approach  to  data-center  management. 

Adopting  a  utility  computing  model  would 
require  corporate  IT  departments  to  eliminate 
the  network  and  systems  management  silos  and 
standardize  on  integrated,  automated  manage¬ 
ment  tools.  They  would  need  to  bring  in  tech¬ 
nologies  that  can  provide  centralized  manage¬ 
ment,  seamless  integration  across  platforms,  vir¬ 
tualized  pools  of  network,  server  and  storage 
resources,  and  intelligent  automation  that  elimi¬ 
nates  the  need  for  hands-on  management. 

Strategic  approaches 

Considering  all  that  utility  computing  entails,  it 
is  no  surprise  that  systems  management  heavy¬ 
weights  HP  and  IBM  offer  the  most  comprehen¬ 
sive  packages.  Big  Blue,  which  has  beaten  the  util¬ 
ity  computing  drum  since  announcing  its  eLiza 
computing  initiative  in  2001,  offers  on-demand 
features  in  its  Tivoli  management  software  and 
WebSphere  business  integration  middleware, 
across  its  database  and  server  lines,  and  through 
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its  outsourcing  arm,  IBM  Global  Services. 

Gartner  and  Forrester  Research  put  HP  in  the 
lead  in  the  race  for  utility  computing,  with  its 
Adaptive  Enterprise  strategy  Utility  Data  Center 
services  and  OpenView  management  software 
products. 

HP  and  IBM,  and  fellow  server  vendors  Sun 
(through  its  N1  program)  and  Microsoft  (with  its 
Dynamic  Systems  Initiative), address  utility  com¬ 
puting  through  hardware  and  software. 

This  compares  to  companies  such  as  BMC 
Software,  Computer  Associates  and  Micromuse, 
which  have  software-only  approaches.  Each 
vendor  says  it  can  manage  an  application  based 
on  its  use  of  network,  server  and  storage 
resources,  and  provide  automated  features  and 
real-time  business  service  impact  analysis. 

But  the  utility  computing  vision  wasn’t  doable 
until  newcomers  such  as  BladeLogic  and 
Opsware  emerged  about  two  years  ago  with 
automated  data-center  provisioning.  In  provid¬ 
ing  automated  server  and  device  provisioning, 
and  automated  application  rollback  features, 
these  companies  filled  a  gap  in  management 
products  that  didn’t  address  change  and  config¬ 
uration  management  across  corporate  data  cen- 
ters.That  made  these  newcomers  ripe  for  acqui¬ 
sition  by  the  bigger  vendors  reaching  to  provide 
all-encompassing  utility  computing  lines.  IBM, 
Sun  and  Veritas,  for  example,  all  snatched  up 
start-ups  with  automation  technology. 

The  implementation  challenge 

Data  center  managers  who  want  to  benefit 
from  the  incremental  integration,  virtualization 
and  automation  features  of  utility  computing 
should  expect  to  have  to  work  at  it. 

Such  has  been  the  case  at  EFW,  a  full-service 
electronics  supplier  using  CAs  Unicenter  soft¬ 
ware  to  manage  an  on-demand  network.  EFW 
has  had  to  document  processes  and  build 
applications  in  customer-friendly  formats,  and 
deploy  some  hardware,  says  Harry  Butler,  sup¬ 
port  center  manager  at  the  Fort  Worth,  Texas, 
company.  Butler  chose  to  go  the  on-demand 
route  when  faced  with  managing  the  infra¬ 
structure  that  supports  the  fast-growing  com¬ 
pany  (120%  in  the  past  three  years)  with  the 
same  size  staff. 

“On-demand  computing  is  a  challenge  to  set  up, 
but  it’s  very  rewarding,”  Butler  says.“lt  lets  you  pro¬ 
vide  more  support  with  less  resources  and  still 
maintain  a  high  customer  satisfaction  level”® 
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Research  In  Motion 

BlackBerry® 

(877)  255-2377 
www.bl ackberry.com 

BlackBerry®  is  the  leading  wireless  enter¬ 
prise  solution  that  keeps  mobile  professionals 
connected  to  people  and  information  while 
on  the  go.  It  provides  users  with  secure, 
wireless  access  to  a  full  suite  of  business 
applications,  including  email,  corporate  data, 
phone,  SMS,  web  and  organizer  features. 


S.l.  Tech,  Inc. 

USB  to  Fiber  Bit-Driver 
(866)  748-3241 
www.sitech-bitdriver.com 

S.l.  Tech  model  2170/2171  USB  media  con¬ 
verter  pair  extends  the  range  of  USB  1.1 
beyond  the  USB  5  meter  limit.  The  USB 
media  converters  are  compliant  with  the 
USB  1.1  specification  supporting  low  speed 
(1.5  Mbps)  and  high  speed  (12  Mbps)  USB 
data  transfer.  The  2170/2171  are  not  detected 
as  new  hardware  but  provide  a  4-port  USB 
HUB  at  distances  up  to  2  Km  over  fiber 
optic  cable.  The  2170  connects  to  host  PC 
through  USB  type  B  connector.  The  2170 
connects  to  USB  peripherals  through  USB 
type  A  connector. 


Snap  Appliance 

Snap  Appliance 
Snap  Server  and  Guardian  OS 
(408)  879-8700 
www.snapappliance.com 

Snap  Appliance,  the  #1  proven  volume 
leader  in  storage  management,  provides 
simple,  scalable  network  attached  storage 
solutions  for  its  customers  —  from  the 
workgroup  to  the  enterprise  —  solving  their 
needs  today  with  a  seamless  migration  to 
the  future.  The  company's  focus  also 
includes  a  dedication  to  bringing  advanced 
technology  to  its  customers,  along  with 
world-class  service  and  support.  Snap 
Appliance  is  headquartered  in  San  Jose,  Calif. 


SPECTORSOFT 


SpectorSoft  Corporation 
Specter  ONE 
(888)  598-2788 
www.SpectorCNE.com 

Spector  CNE  is  Internet  Monitoring  and 
Surveillance  software  for  businesses. 
Spector  CNE  combines  Spector  Pro,  PC 
Magazine  Editors'  Choice  award  winner, 
with  corporate  network  installation,  config¬ 
uration  and  deployment  capabilities.  CNE 
automatically  records  your  employees' 
emails,  chats,  keystrokes  typed,  web  sites  - 
visited  —  and  lets  you  review  their  activities 
in  exact  detail. 
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XO  Communications 
(866)  SIMPLY  XO  (746-7599) 
www.xo.com 

XO  Communications  simplifies  communica¬ 
tions  for  businesses  of  all  sizes  with  an 
extensive  product  portfolio  of  local  and  long 
distance,  Internet  access  and  Web  hosting, 
backed  by  24x7  live  customer  care  and  an 
award-winning  network.  Financially  secure, 
XO  is  with  you  for  the  long  run. 


IMM  maite  to  mate  tMt  Nstlng  as  complete  and  accurate  as  possible.  Network  Mforld  is  not  liable  for  errors  or  omissions. 


SurfControl* 

SurfControl 

Web  Filtep  E-mail  Filter  and  Instant 
Message  Filter 
(800)  368-3366 
www.surfcontrol.com 

SurfControl  pic,  the  world's  number  one 
Web  and  e-mail  filtering  company,  is  the 
only  company  in  the  security  market  offering 
a  total  content  security  solution  that  com¬ 
bines  Web,  E-mail  (including  Anti-Spam  and 
Anti-Virus)  and  Instant  Message  Filters  with 
adaptive  reasoning  tools  to  automate  con¬ 
tent  recognition. 
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western  telematic  incorporated 

Western  Telematic,  Inc. 

(949)  586-9950 
www.wti.com 

Western  Telematic,  Inc.  (WTI)  is  an  industry 
leader  in  designing,  manufacturing  and  mar¬ 
keting  of  data  connectivity  solutions.  WTI's 
current  product  offering  includes  the 
NetReach  line  of  remote  site  management 
hardware.  The  products  consist  of  cost- 
effective  terminal  server  alternatives,  Telnet 
and  dial-up  network  power  switches  and 
secure  modems  for  remote  dial-up  manage¬ 
ment.  In  1975  long  time  company  executive, 
David  Morrison,  took  over  as  President.  Mr. 
Morrison  continues  to  successfully  guide 
WTI  through  its  cutting-edge  commitment 
to  research  and  development. 
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Questions  for 
your  RFID  suppliers 

•  How  much  do  your  RFID  tags  cost,  and 
how  much  will  the  price  drop  over  the 
next  18  months? 

•  Do  wireless  LANs  interfere  with  the 
scanning  system? 

•What  is  the  price  and  form  factor  of 
your  RFID  readers?  (Some  have  been 
deemed  expensive  and  unwieldy.) 


•  How  will  the  tags  interface  with  and 
affect  the  enterprise  network?  (For 
example,  are  they  compliant  with 
American  National  Standard  256,  the 
emerging  vendor-independent  RFID  pro¬ 
gramming  interface?) 


was  a  rough  summer  for 
radio  frequency  identifica¬ 
tion,  the  heir  to  the  venera¬ 
ble  bar  code. 

In  July,  privacy  advocates 
crowed  when  Wal-Mart  and 
Gillette  canceled  a  planned  trial  of  “smart 
shelves,”  which  inform  the  supply  chain  when 
(and  with  what)  they  need  to  be  restocked. “On 
June  6, 1  walked  around  and  wiggled  the  smart 
shelf  [in  a  Brockton,  Mass.,  Wal-Mart,  where  the 
test  was  about  to  launch]. The  next  day,  it  was 
gone,”  proudly  reports  Katherine  Albrecht,  exec¬ 
utive  director  of  one  of  those  groups  —  Con¬ 
sumers  Against  Supermarket  Privacy  Invasion 
and  Numbering  (CASPIAN). 

A  month  later,  CASPIAN  called  for  a  boycott  of 
Gillette,  darkly  dubbing  the  RFID  transceivers 
embedded  in  razor-blade  packaging  “Gillette 
spy  chips.”  A  Gillette  spokesman  dismisses  the 
boycott, saying  the  company  has  no  intention  of 
tracking  individual  customers  and  their  pur¬ 
chases. 

Gillette  also  denies  that  the  privacy  groups 
had  any  influence  on  the  decision  to  cancel  the 
smart-shelf  trial,  as  does  Wal-Mart.  They  say  the 
companies  opted  instead  to  focus  their  atten¬ 
tion  farther  up  the  supply  chain,  at  the  palette 
and  case  levels.  Clearly,  though,  groups  such  as 
CASPIAN  have  had  a  sobering  effect  on  these 
companies  and  other  businesses  working  to 
improve  supply-chain  management  through 
RFID.  And  few  industry  watchers  doubt  that  pri¬ 
vacy-group  pressure  will  force  companies  to 
examine  the  consumer-privacy  ramifications  of 
the  technology  and  establish  a  code  of  con¬ 
duct.  Public  protest  also  may  slow  RFID  adop¬ 
tion  by  cautious  companies. 

_  However,  not  all  the  sum¬ 
mer  buzz  around  RFID 
was  negative.  While  CASPI¬ 
AN  was  making  headlines 
with  its  Gillette  boycott, 
Texas  Instruments  an¬ 
nounced  it  had  developed 
a  tiny  (22  mm  circumfer¬ 
ence)  RFID  chip  sturdy 
enough  to  survive  the  dry- 
cleaning  process.  And  de¬ 
spite  the  smart-shelf  volte 
face  (whatever  its  cause), 
Wal-Mart  instructed  top 
supply-chain  partners  to  be 
RFID-ready  at  the  case  and 
pallet  level  (as  opposed  to 
the  individual-item  level)  by 
January  2(X)5. 


RFID  at  work 

That’s  a  lot  of  excitement 
for  a  technology  that  was 
born  during  World  War  II 
and  has  been  around  in 
pretty  much  its  present  form 
for  a  decade.  RFID  transfers  data  wirelessly 
between  a  minuscule  transceiver  and  a 
transponder,  or  “tag,”  that  can  be  attached  to  just 
about  anything  —  an  item  in  a  store,  a  shipping 
container,  even  livestock.  Without  human  inter¬ 
vention,  the  tag  and  transponder  can  trigger 
actions,  such  as  reordering  from  a  supplier. 
Already,  RFID  is  used  in  airport  luggage-routing 
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Radio  frequency  Identifi¬ 
cation  tags  might  make 
supply  chains  infinitely 
ml5re  m^ 

the  privaoy^iap4ieeds 
settling  first. 


systems  and  highway  toll  collections. 

For  years,  RFID’s  potential  for  dramatic  supply- 
chain  improvements  has  been  clear.  Because  it 
rides  radio  waves,  RFID  doesn’t  require  line-of- 
sight  scanning  as  bar  codes  do  (high-frequency 
RFID  systems  boast  transmission  ranges  up  to  90 
feet). The  great  promise  of  RFID  is  to  offer  more 
granular,  accurate  information  on  product  avail¬ 
ability  and  to  automate  processes  that  are  per¬ 
formed  manually  today 

'Those  radio  waves  are  what  concern  privacy 
advocates,  who  want  assurance  that  when  a  con¬ 
sumer  buys  a  pack  of  Certs  and  slips  them  in  her 
pocketbook,  she  won’t  be  surreptitiously  tracked 
by  the  government,  the  store  or  hackers. 

Privacy  is  a  recent  concern;  for  years,  cost  held 
back  RFID. The  consensus  is  that  the  price  of  an 
RFID  tag  must  sink  to  a  penny  before  the  tech¬ 
nology  is  cost-effective  at  the  grocery-store  level 
(though  it’s  already  attractive  for  higher-margin 
items  such  as  clothing). 

Nailing  down  the  price  of  an  RFID  tag  is  impos¬ 
sible  today  Mark  Robert!,  editor  of  the  online 
magazine  RFID  Journal,  says  40  cents  to  $1  is  the 
going  rate  in  the  real  world.  But  Bob  However,  a 
partner  at  venture  capital  firm  Advanced  Tech¬ 
nology  Ventures  who  closely  follows  RRD,  be¬ 
lieves  Gillette  paid  as  little  as  six  cents  apiece  for 


the  500  million  tags  it  purchased  from  Alien  Tech¬ 
nology  in  a  heavily  subsidized  deal  meant  to 
build  market  share  in  the  nascent  industry  Trans¬ 
portation  company  DHL,  which  plans  to  track  its 
packages  with  Philips  Semiconductor  tags  by  late 
2004,says  it  won’t  pay  more  than  20  cents  each  for 
the  1.5  billion  tags  it  plans  to  use  annually 

In  any  case,  there’s  more  to  RFID  than  tagging 
every  box  of  Bisquick.  Already  the  ROl  is  attrac¬ 
tive  at  the  pallet  and  carton  level  —  where  Wal- 
Mart  is  focusing.'The  Bentonville,Ark., company  is 
committed  to  using  RFID  in  its  distribution  cen¬ 
ters  by  2005  with  its  top  100  suppliers,  the 
spokesman  says,  on  each  pallet  and  case.  A  year 
after  that,  the  program  will  encompass  all  Wal- 
Mart  suppliers. 

'The  reason  is  simple:  Already  legendary  for  its 
logistics  processes,  Wal-Mart  believes  that  jump¬ 
ing  from  bar  codes  to  RFID  “will  be  like  going 
from  the  telegraph  to  the  Internet,”  the 
spokesman  says.  “We  move  a  lot  of  product,”  he 
adds  (an  understatement  —  Wal-Mart  figures 
show  that  from  January  to  June  2002, 2.5  billion 
containers  passed  through  its  108  U.S.  distribu¬ 
tion  centers), “and  we  think  RFID  will  teach  us  a 
lot  about  the  daily  ebb  and  flow” 

He  won’t  comment  on  when  RFID  will  make  it 
to  Wal-Mart  shelves,  which  is  what  triggers  the 
objections  of  privacy  groups.  CASPlAN’s  Albrecht 
says  her  bottom  line  is,  “You  absolutely  cannot 
put  these  [tags]  in  products  consumers  are  going 
to  interact  with.” 

Privacy  first 

Robert!  says  package-level  RFID  tags  are  a  full 
decade  away.  In  anticipation  of  protests  such  as 
CASPIAN’s,he  has  long  urged  businesses  to  enact 
RRD  privacy  policies  —  and  believes  many  cor¬ 
porations  will  do  so  in  2(X)4.  “This  industry  is 
immature,” he  says.“Nobody  had  Internet  policies 
in  1994. Today,  nobody’s  selling  anything  to  con¬ 
sumers  with  RFID  tags,  so  why  would  they  have 
an  RFID  privacy  policy?” 

As  it  turns  out,  pressure  from  consumer  privacy 
groups  might  bring  about  a  win-win  situation  for 
RFID  adopters;  while  they  gradually  implement 
the  technology  with  suppliers,  they  can  form 
cogent  RFID  privacy  policies. 

Ulfelder  is  a  freelance  writer  in  Sauthborough, 
Mass.  He  can  be  reached  at  sulfelder@charter.net. 
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40G  Ethernet,  or  beyond 

50  lOG  Ethernet,  standardized 
15  months  ago,  is  seeing  but  a 
whisper  of  deployment  in  enter¬ 
prise  networks  and  even  less  than 
that  in  carrier  networks.  But  that’s 
not  stopping  industry  watchers 
from  speculating  on  what  speed 
to  take  the  venerable  LAN  stan¬ 
dard  to  next. 

In  May,  a  senior  Cisco  executive 
voiced  his  opinion  that  40G  bit/sec 
Ethernet  could  be  technically  fea¬ 
sible  within  two  years.  Doing  40G 
Ethernet,  based  on  SONET  technology,  would  be  eas¬ 
ier  than  doing  the  linear  mathematical  leap  to  lOOG, 
said  Luca  Cafiero,  general  manager  for  switching, 
voice  and  storage  at  Cisco. 

And  in  a  recent  interview,  Raleigh  Mann,  manager 
of  network  operations  at  Industrial  Light  &  Magic 
(ILM),said  40G  is  within  reason  for  this  San  Rafael, 
Calif., movie  post-production  house. Coincident  with 
a  headquarters  move  planned  for  2005,  ILM  is 
designing  a  network  that  would  deliver  IG  bit/sec 
connections  to  about  3,800  user  machines,  using 
multiple  lOG  links  between  each  switching  closet 
and  a  “very  large  mesh  of  lOG  at  the  core  for  redun¬ 
dancy  and  performance.”  Mann  anticipates  close 
to  200  lOG  interconnects  on  the  network  and 
says  he  envisions  40G  within  the  core  and  to  s 
ome  higher-density  closets  (see  www.nwfusion. 
com,  DocFinder:  7837). 

Daspite  the  murmurs,  no  one  has  yet  initiated  a 
“call  for  interest”  (a  formal  IEEE  process  to  ensure  an 
idea  is  timely  and  interesting  enough  to  pursue)  on 
40G,  lOOG  or  any  other  speed  higher  than  10G,says 
Bob  Grow,  chair  of  the  IEEE  802.3  Working  Group  and 
a  principal  architect  at  Intel.“Another  bump  in  speed 
has  not  been  discussed,  period,”  he  says.  “If  anyone 
alludes  to  something,  it’s  just  that  there  is  a  future 
and  that  we’ll  eventually  get  around  to  it.” 

Rather,  Grow  says,  recent  calls  for  interest  and  pro¬ 
jects  have  been  focused  on  getting  lOG  better  tuned 
to  the  enterprise  market. That  includes  work  on  lOG 
over  copper,  over  FDDI  and,  more  complicated, 
Ethernet  in  the  first  mile  (EFM),he  adds. 

Boosting  Ethernet  beyond  lOG  would  be  a  big 
undertaking, one  for  which  IEEE  resources  might  not 
yet  be  available, Grow  says.“We  can  only  do  so  many 
projects  and  do  them  well.  It  makes  sense  to  get 
[EFM]  finished  before  undertaking  another  major 
project  "With  that.  Grow  doesn’t  anticipate  the  speed 
buzz  getting  any  louder  within  the  802.3  working 
group  until  at  least  next  year. 

Houte  management 

51  eiiig  is  believing.  So  say  two  network  start-ups  of 
a  i  -nrept  they  calFroute  management”  that  is  work- 
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What  emerging  technologies 
are  people  starting  to  buzz 
over?  We  take  a  look 
at  three. 

■  BY  BETH  SCHULTZ 


ing  users  and  industry  watchers  into  a  tizzy. 

Route  management,  sometimes  called  route  ana¬ 
lytics,  is  not  to  be  confused  with  the  previously 
buzzy  “route  optimizers”  or  “router  management” 
products.  Route  managers  do  not  log  into  or  man¬ 
age  routers,  nor  do  they  otherwise  manipulate  the 
routing  function.  Rather,  these  appliances,  available 
from  Packet  Design  and  Ipsum  Networks,  silently 
“listen”  to  exchanges  between  routing  protocols 
and  then  deliver  a  Layer  3  map  of  the  routing  paths. 
The  map  changes  as  the  routes  do  —  meaning, 
continuously. 

Such  easily  attainable  real-time  visibility  has  never 
before  been  possible,  says  Adam  Joffe,  CTO  at  Sony 
Online  Entertainment  (SOE)  in  San  Diego.  SOE 
has  been  beta-testing  one  of  the  two  route  managers 
available  —  Packet  Design’s  Route  Explorer  — 
for  several  months.  Joffe  calls  the  tool  “very  power¬ 
ful,”  not  just  because  of  that  real-time  visibility  but 
also  because  it  shows  the  effect  of  a  route  change. 
“You  can  cross  a  link  and  see  where  the  bits  would 
go.  So  you  can  see  the  resiliency  and  redundancyT 
he  says. “Network  engineers  can  take  that  info  and 
make  changes.” 

Route  Explorer  1 .5  supports  the  Open  Shortest  Path 
First  (OSPF)  and  Intermediate  System-to-System  (IS¬ 
IS)  routing  protocols.  Border  Gateway  Protocol 
(BGP)  and  Cisco  Enhanced  Interior  Gateway  Rout¬ 
ing  Protocol  (EIGRP)  support  is  expected  in  the 
fourth  quarter. 

One  Route  Explorer  appliance  can  support  any 
size  network,  listening  to  any  number  of  domains. 
The  appliance  costs  $35,000  for  up  to  50  routers,  with 
stair-step  pricing  up  to  250  or  more  routers.  The 
unlimited  license  version  costs  $75,000. 


The  other  offering,  Ipsum’s  Route 
Dynamics,  supports  OSPp  with 
BGP  support  coming  later  this  year 
and  IS-IS  and  EIGRP  planned  for 
next  year.  Route  Dynamics  lists  at 
$50,000,  which  includes  a  Multi- 
Area  Path  Server,  an  IP  Listener 
appliance  and  software.  Like  the 
Packet  Design  product.  Route 
Dynamics  can  handle  any  size  net¬ 
work;  in  this  case,  by  adding  IP 
Listeners,  which  cost  about  $5,000 
for  an  additional  100  routers. 

Network  analysts  herald  these 
new  products  as  fantastic  planning  tools.  The  real¬ 
time  visual  maps  will  make  it  much  easier  for  users 
to  configure,  troubleshoot  and  manage  IP  networks, 
they  say 

And  that,  Joffe  adds,  speaks  directly  to  cost  of  man¬ 
aging  complex  router  networks.  “From  my  chair,  it 
looks  like  a  great  purchase,”  he  says. 

XML  switching  appliances 

Where  there’s  a  Web  service,  there  ought  to  be  an 
XML  switch.  Such  is  the  growing  buzz  on  how  to  deal 
with  XML  traffic. These  so-called  XML  switches  work 
at  or  near  wire  speeds  to  process  XML.messa5qs».a . 
task  that  can  affect  server  processing  power  severely 
when  done  in  server  software.  Sitting  in  front  of.Web. 
or  application  servers,  these  dedicated  devices  han¬ 
dle  tasks  such  as  validating  and  logging  XML  traffic, 
translating  XML  dialects,  prioritizing  and  routing  XML 
traffic,  and  encrypting/decrypting  data  'within  an 
XML  document. 

One  of  the  earliest  market  entrants,  the  XPE  Switch 
from  start-up  Sarvega,  secures,  routes  and  prioritizes 
XML  traffic.  The  switch  understands  XML  tags  and 
can  prioritize  certain  transactions,  such  as  a  cus- 
tomer  sales  order.  Meanwhile,  other  start-ups  are 
zeroing  in  on  more  specific  pieces  of  the  XMLpxo: 
cessing  problem.  Appliances  from  Forum  Systems, 
Reactivity  and  Westbridge  Technology  focus  on  secu’ 
rity  functions  such  as  authentication, decryption  and 
encryption.  - 

Analysts,  venture  capitalists  and  early  users  have 
been  bullish  on  these  XML  switches;  perhaps 
because  XML  traffic  is  expected  to  grow  signifi¬ 
cantly  in  the  next  few  years.  By  2006,ZapThink  says, 
XML  will  account  for  25%  of  network  traffic, up  from 
2%  today. 

XML  switching  appliances  remain  the  purview  of 
these  and  other  start-ups,  including  Conformative 
Systems,  DataPower  Technology  and  Xbridge  Soft¬ 
ware.  However,  industry  watchers  suspect  estab¬ 
lished  network  vendors  soon  will  want  to  incorpo¬ 
rate  such  functionality  into  their  prcxJuct  lines.  Cisco 
and  Nortel  come  to  mind  as  vendors  ckisely  hsteiv 
ing  to  this  buzz.H 
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on  their  foreheads. 


With  Spector  CNE  on  your  network,  you 
will  easily  prevent  or  eliminate  problems 
associated  with  Internet  and  PC  abuse. 

Spector  CNE  provides  an  immediate  and 
accurate  record  of  every  employee's: 

Emails  Sent  &  Received 

Chat/Instant  Messages 

Elsgi  Keystrokes  Typed 

Web  Sites  Visited 


Programs  Launched 


mi  VCR-like  Snapshot  Recording 


To  learn  more  about  Spector  CNE  and 
receive  a  FREE  cost  savings  analysis  for 
your  business  call  1-888-598-2788  or 
visit  www.SpectorCNE.com/tattoo. 


A  few  minutes  a  day  of  personal  surfing,  online  shopping  and  chatting  may  seem 
harmless,  but  consider  this... 

A  recent  study  concluded  that  employees  spend  an  average  of  75  minutes  per  day  using 
office  computers  for  non-business  related  activity  (surfing  porn,  gambling,  shopping  or 
even  searching  for  sex  online).  That  translates  into  an  annual  loss  of  $6250  per  employee 
or  more  than  $300,000  per  year  down  the  drain  for  a  company  of  just  50  employees. 

So  how  do  you  catch  guilty  employees  who  won't  admit  they  are  stealing  company  time? 

Introducing  Spector  CNE  -  Corporate  Network  Edition 

At  the  touch  of  a  button,  you  can  monitor  any  employee,  any  time,  anywhere  on  the 
network.  Spector  CNE  secretly  records  and  archives  chat  conversations,  instant  messages 
(AOL,  MSN  and  Yahoo),  emails  (including  Outlook,  Exchange,  AOL  and  web-based  mail 
like  Hotmail),  web  sites  visited,  keystrokes  typed,  files  downloaded,  programs  run  and  more. 

And  unlike  many  filtering  and  blocking  tools,  Spector  CNE  records  everything  they  do  in 
exact  visual  detail.  So,  you  have  absolute  proof  that  goes  way  beyond  just  knowing  they 
visited  porn.com. 

Take  control  of  employee  PC  and  Internet  abuse  with  Spector  CNE.  It’ll  be  the  best 
software  investment  you  make  this  year. 
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EQUINOX*  “Serial  Ports  Over  IP” 


an  Avocent  Company 


The  ESP-2  Ml  is  a  compact  Multi-Interface,  2-port  serial  hub  that  provides  versatile  RS-232,  RS-422  and  RS-485 
support  for  industrial/manufecturing  and  a  wide  variety  of  commercial  applications. 
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•  NEW  web  management  utility  simplifies  configuration  and  administration 

•  Supports  RS-232,  RS-422  and  RS-485  serial  protocols 

•  Ideal  for  industrial/manufacturing  environments  and  other  commercial  applications 
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Make  your  serial  devices 
IP  rea^  with  Equinox  ESP 
Serial  Hubs! 


The  Family  of  Equinox  ESP  10/100  Serial  Hubs  provide  “Serial  Ports  Over  IP” 

Place  serial  COM  ports  at  the  point  of  need  and  eliminate  the  cabling  nightmare.  Our  Multi-Interface  serial  hubs  allow 
soft-selection  of  RS-232,  RS-422  and  RS-485  serial  interfaces  on  a  per  port  basis.  Equinox  Serial  Hubs  offload  virtually 
all  serial  traffic  from  the  host  server  so  your  ports  are  finally  freed  from  the  confines  of  your  server  -  ideal  for  peripheral 
sharing.  Includes  15KV  surge  protection  on  every  pin  of  every  port. 

Download  your  free  white  paper:  Optimizing  Manufacturing  infrastructure  Using  Ethernet  Seriai  Hubs  at 
http://www.equinox.com/wpdownioad272.cfm 

For  a  FREE  30-day  product  evaluation,  call  1-800-275-3500  ext  615  or  954-746-9000  ext.  615 
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•  Connectivity  -  Fibre  Channel  and  SCSI  interfaces  for  increased  flexibility 

•  Interoperability  -  certified  with  all  leading  hardware  and  software  vendors 

•  Ease  of  Integration  -  plug  &  play  with  auto-configuration  gets  you  up  and 
running  quickly 
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Fibre  Channel  hubs  •  SAN  connectivity  software 


ATTO  Technology,  Inc. 
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OneTouch''^  Series  II 
Network  Assistant 


The  OneTouch  Series  II  Is  the  perfect  tool  for 
troubleshooting  switched  environments.  It  identifies 
problems  and  shows  you  solutions  -  fast.  See  everything 
from  instant  discovery  of  network  devices  to  locating 
duplicate  IPs.  Sources  of  network  utilization,  errors  and 
broadcasts.  Automatically  tests  patch  cords,  NICs  and 
switch  ports.  Monitors  traffic  throughput.  And  a  lot 
more.  The  bottom  line  is  improved  network  performance. 

It  increases  uptime.  Lowers  maintenance  costs.  And  because 
OneTouch  is  so  easy  to  use,  you'll  cut  training  costs,  too. 


/  OneTouch  is  part  of  a  family  of  network  support  tools.  Find 
the  right  tool  to  fit  your  needs  with  the  interactive  selection 


/ 


guide  at  www.flukenetworks.com/toolguide. 


networks. 


'i 

®2003  Fluke  Corporation.  All  rights  reserved.  01778 

Other  products  mentioned  herein  are  the  property  of  their  respective  owners. 


Know  when  enough  is  enough 

...even  when  you're  not  there. 


Avoid  overloading 
circuits 

Monitor  the  current  draw 
as  you  install  equipment 


Protect  circuit  from 

o 

unauthorized  use 

Turn  outlets  off  when  not  in  use 

C 

Avoid  in-rush  current 

Cui 

overload 

• 

Outlets  are  turned  on 

sequentially 

f  ) 

Manage  power  via 
Network  Interfaces 

Built-in  Web,  SNMP,  Telnet 
support 


Enter  to  WIN  a  FREE  APC  Rack  PDU  today. 

)/itilhttir//proinojpc£om  Key  Code  n347y  •  Call  888-2B9-APCC  x6625  •  Fax  401-788-2797 

-  '' 'ponun  AaTrddamaits  an  the  prcpany  of  owners  E-mail  esuppmOapa  com  •  132  Faitgrtxnfe  Road.  West  Kaigsloiv  Ri  02892  USA 


ARC'S  advanced  Switched  Rack  Power 
Distribution  Units  let  you  feel  secure 
whether  you're  installing  equipment  or 
away  from  the  data  center. 

Now  you  can  remotely  control  power 
to  individual  outlets  and  monitor 
aggregate  power  consumption  via  local 
and  remote  displays.  Access,  configure 
and  control  the  APC  Switched  Rack  PDU 
through  Web,  SNMP  or  Telnet  interfaces. 

From  basic  power  distribution  to 
controllable  outlets,  APC  has  solutions  up 
to  5.7  kW  to  fit  your  IT  environment 
needs.  See  our  entire  line  of  rack  PDUs 
online  at  www.apc.com. 


Every  product  carrying  this  mark  has  been 
tested  and  certified  for  use  with  InfraStruXure* 
architecture.  Before  you  buy,  check  for  the  X  to 
guarantee  product  compatibility. 


M 

MaSifuXur* 

1  *Ayc 


With  over  15  million 
satisfied  customers, 
ARC'S  Legendary  Reliability* 
guarantees  peace  of  mind. 


Legendary  Reliability* 


AA3B3EP^ 


NetworkWbild 

THE  HUB  OF  THE  NETWORK  BUY 


I 


J 


r 


81 

9/29/03 


igOMPLETE  REMQTE  KVM  CONTROL  VIATCP^IB 


BEST  OF  INTEROP 
NETWORLD  INTEROP 


O  0«N 


2003  Winner 

of  the  Best  Of  Show  Award 


Extend  Your  IT  Reach  Beyond  The  Server  Room 


Kaveman  1 6  -  Allows  up  to  6  simultaneous 

users  connecting  16  servers 


How  does  Kaveman  work  - 


Remote  Keyboard,  Video  and  Mouse  Access  via  Web  Browser 

You  can  access  to  the  BIOS  level  of  your  servers  or  serial  devices  anytime, 
anywhere  with  full  KVM  control  via  a  Web  Browser  or  VNC. 

24/7  Automatic  Server  Monitoring 

Kaveman  monitors  server  functions  and  notifies  you  before  any  server 
problems  become  critical. 

Highly  Secure  Deployment 

Kaveman  utilizes  128-bit  SSL  encryption  for  all  keyboard  and  mouse  data 
and  supports  SSH  and  VPN  environments.  In  addition,  Kaveman  offers 
specialized  security  features  including  the  Turtle  mode  and  Stealth  mode. 

Non-intrusiveTo  Your  Network  Environment 

As  a  stand  alone  device  that  requires  no  additional  software  or  hardware 
to  install,  Kaveman  minimizes  the  potential  impact  on  your  servers. 

Remote  Power  Cycling 

You  can  power  cycle,  turn  on/off  any  connected  device  over  IP  simply 
using  a  common  Browser. 


The  Ensine  of  /nno\'ation 


www.digitalv6.com  1-866-922-2333 


Mention  Promotion  Code  ‘NETWORK  WORLD’  when 
purchasing  the  Kaveman. 


There  Is  A  Better  Way  To  Troubleshoot  &  Manage  Your  Network 


Expert 

Observer 

^2895 


Observer 

Suite 

f3995 


Observer® — Quickly  identifies  network 
trouble  spots  and  costs  thousands  less  than 
expensive  hardware-based  analyzers. 
Observer  provides  metrics,  capture,  and 
trending  for  both  shared  and  switched 
environments. 

•  Full  packet  capture  and  decode  for  over 
500  protocols,  including  TCP/IP  (v4  &  v6), 
NetBIOS/NetBEUI,  XolP,  SNA,  SQL,  IPX/SPX, 
Appletalk  and  many,  many  more! 

•  Switched  mode  sees  all  ports  on  a  switch 
gathering  statistics  from  an  entire  switch  or 
capture/statistics  from  any  port(s) 

•  Long-term  network  trending  collects 
statistical  data  for  days,  weeks,  months, 
even  years 

•  Real-time  statistics  include  Top  Talkers, 
Bandwidth,  Protocol  Statistics,  and 
Efficiency  History 

•  Ethernet  (10/100/Gigabit),  Token  Ring, 
FDD!,  and  Wireless  802. 1 1 — no  need  to 
purchase  separate  tools 


•  Windows®  98/Me/NT/2000/XP  compatible 

•  Over  4,000  frame  types  recognized 

Expert  Observer — Identifies  problems  and 
provides  Expert  information  in  plain  English. 
Includes  all  of  the  features  of  Observer  plus 
real-time  and  post-capture  expert  event 
identification  and  analysis — new  SQL  and 
Frame  Relay  experts  add  to  the  many  other 
protocols  covered,  time  synchronization 
technology,  and  modeling  of  network  traffic. 

Observer  Suite — The  ultimate  tool  for 
the  most  demanding  power  user. 

Provides  a  full  complement  of  tools  that 
includes  all  of  the  features  of  Expert 
Observer  plus  SNMP  management,  RMON 
console/Probe  and  Web  reporting.  Includes 
one  remote  Probe. 

if  you  have  any  network  problems,  find 
out  the  cause  with  Observer,  Expert 
Observer,  or  Observer  Suite. 


Call  800-526-7919  or  visit  us  online  for  a  full-featured  evaluation: 

www.NETWORKINSTRUMENTS.com 

us  (952)  932-9899  •  Fax  (952)  932-9545  •  UK  S  Europe  444  (0)  1959  569880  •  Fax  444  (0)  1959  569881 


NETWORK 

IHSTRBMEHTS 


©2(X)2  Network  Instruments,  U.C.  Observer,  “Network  Instruments”  and  the  “N  wrth  a  dot”  logo  are  registered  trademarks  of  Network  Instruments,  LLC. 
All  otner  trademarks  are  property  of  their  respective  owners. 
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Setting  New  Standards  in  Remote'Control 
www.netstfpl^oft-inc.com 


APC  KVM  Switches  give  you 
full  control  of  up  to  8  servers 
with  |ust  one  keyboard, 
monitor,  and  mouse 

APC  KVM  Switches  eliminate 
the  need  for  a  keyboard, 
monitor,  and  mouse  dedicated 
to  each  server.  Thus,  APC 
KVM  switches  can  reduce 
your  hardware  and  energy 
costs  while  saving  valuable 
rack  space. 

By  using  one  point  of  control 
for  up  to  64  servers,  APC 
KVM  switches  increase  the 
availability  and  manageability  of 
'  server  environment. 


Manage  and  View  64 
Sen/eis  in  Just  21). 


FEATURES  INCLUDE 


•  8  port  solution  supports  any 
combination  of  PC  (USB  & 
PS/2)  and  Sun  computers. 
Cascading  functionality  allows 
for  support  up  to  64  systems. 

•  Configure  and  control  your 
APC  KVM  Switch  with  On- 
Screen  Display. 

•  Hot  Pluggable  Operation 
enables  you  to  add  servers 
without  having  to  power  off 
the  switch  or  servers. 

•  Move  between  servers 
in  one  of  three  ways:  via 
the  push-buttons,  with  the 
scan  button  or  with  a 
keyboard  sequence. 


Combine  APC's 
Rack-mount  LCD 
Monitor  with  an  APC 
KVM  Switch  to 
control  and  monitor 
up  to  64  servers 
while  utilizing  only 
2U  of  rack  space. 


M 


Every  product  carrying  this  mark 
has  been  tested  and  certified  for  use 
with  InfraStruXure'*  architecture. 
Before  you  buy,  check  for  the  X  to 
guarantee  product  compatibility. 


n 


Enter  to  WIN  a  FREE  APC  LCD  Monitor  today.  A  $2239  value!  , 

Visit  httiry/pfomojpcxofn  Key  Code  n346y  •  Call  888-289- APCC  x6624  •  Fax  401-788-2797  j 


APC's  Rack-mount 
LCD  Monitor  saves 
rack-space  and  provides 
instant  manageability 

As  floor  space  in  your  IT 
environment  becomes  more 
expensive  to  allocate,  you 
need  to  use  your  rack  space 
as  efficiently  as  possible. 

An  APC  rack-mount  LCD 
monitor/keyboard  drawer 
offers  you  the  same 
functionality  of  a  CRT 
monitor,  monitor  shelf, 
keyboard  and  drawer,  while 
using  only  1U  (1.75")  of 
rack  space. 

With  ov«r  15  million  satisfiod 
custoflwrt,  APCs  LtgondarY 
Roliability*  goaraataas  paaca 
of  miad. 


FEATURES  INCLUDE 


•  A  full  size  keyboard  with  104 
full  travel  keys  and 
integrated  number  pad. 

•  15"  LCD  monitor  with  on¬ 
screen  display  adjustments. 

•  Integrated  trackball 
eliminates  the  need  for  an 
external  mouse 

•  Able  to  connect  to  a  server 
or  KVM  switch  via  a 
standard  VGA  connector. 


Legendary  Reliability* 


Al  ItdCkTTuru  are  property  of  UwN  < 


com*  irFwgroinls Road  RtccsaZUSA 
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LANWatch  is  a 
robust,  Windows  based 
packet  analyzer.  Single 
user  only  $695. 


LANW&tcK 


Powerful 

Network 

Forensics 

Analysis 


View  Email,  Web  Pages,  and  File  Contents 
Reassemble  up  to  999,999  Connections 
Patent  Pending  SSH2  &  SSL  Decryption 
Record  Traffic  for  Future  Investigation 
Guaranteed  Invisible  on  Your  Network 
Find  and  Report  Cleartext  Passwords 
Full-Content  Inspection  &  Analysis 
Catch  Header  and  Port  Spoofing 
Drill  Down  through  Connections 
Secure  Remote  Administration 


PhoB^@Swe@ 


The  wardialer  of  choice 
for  Security  Professionals 

PhoneSweep  Gold  has  a 
distributed  architecture, 
merged  reporting  and 
email  notification. 


Are  you  being  wardialed? 
Find  out  with  Sandtrap® 
our  Wardialer  Detector. 


Free  Whitepaper  &  Product  Demos 


www.sandstorm.net  617-426-5056  sh&ria  c  ap  es 


Copyright  ©  2003  Sandstorm  Enterprises,  Inc.  All  Rights  Reserved. 


Web  Based  Boot  Bar 


Yes,  you  can  Switch 
Power  over  the  Internet 


Servers,  routers,  and  other  electronic  equipment  sometimes 
“lock-up,”  often  requiring  a  service  call  to  a  remote  site  just  to  flip 
the  power  switch  to  perform  a  simple  reboot... 

The  NBB  “Mini”  Boot  Bar  Power  Switch,  gives  you  the  ability  to 
perform  this  function  from  anywhere! 

■  Web  Browser  Access  for  Easy  Operation 

■  Telnet  and  Serial  Access 

■  Encrypted  Password  Security 

■  Five  Individual  Outlets 

■  Power-up  Sequencing 

■  On  /  Off  /  Reboot  Switching 

■  Versatile  Zero  U  Mounting 


3WII  Network  Boot  Dei 

[UTJifea 

NETWORK  BOOT  BAR 

LOCATION:  NBB  Uve  Demo  Unit 

SWITCH  PANEL 

Firmware  Version;  1,01 

Plug  Name 

Status 

On  Off 

Boot 

1  Serverl 

haiirJ 

r  r 

r 

2  Server_2 

iogJ 

r  r 

r 

3  Hub 

r  r 

r 

4  Router 

LdfrJ 

r  r 

r 

5  Modem 

sm 

r  r 

r 

AH 

r  r 

r 

1  Plugs  1 

Appvl  'Owohl 

fUUl 

www.wti.com 

(800)  854-722^ 

western  telematic  incorporated 

5  Sterling  *  Irvine  •  California  926  1  8-25  1  7 

"Keeping  the  Net.. .Working!' 

// 
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’sYour 
inf  Load? 


'  Circuit 

wjthL^ntry  iriput  Current  Monitor 

•  -  frecisefy  measure  the  current,  in  amps, 

,  -  for  each  power  circuit 

•  Prevent  overloads  on  existing  power  circuits 

•  Reduce  costs  for  additional  power  circuits 

•  Overcurrent  alarms 

•  Remote  Measurement  via  IP  or  RS-232 

•  Local  Measurement  via  digital  display  . 


Sentry  Power  Tower.  Equipment  Cabinet  Solutions 


Server  Technology,  Inc 


1040  Sandhill  Drive  Reno,  Nevada  89511  USA 
web:  www.servertech.com  toll  free:  1.800.835.1515 


SENSAPHONE® 


Sends 

SNMP 

Messages 


Monitors 

64 

IP  addresses 


Embedded 

Web 

Server 


Sends 

E-Mail 


Power 

Outage 

Alarming 


Internal 

UPS 


• 

^r2y:  .1  V..:. ^ 

Power 

Control 

Interface 


Ethernet 

Port 


Internal  Voice, 
Modem 
St  Pager  Port 


8  R)-45  Sensor  Inputs 

(Temperature,  Humidity, 
Water,  Motion,  Power, 
Smoke/Fire) 


Microphone 
for  Sound 
Monitoring 


BE  NOTIFIED  BEFORE  CRITICAL  EVENTS  TURN  INTO  DISASTER! 


•  Eight  environment  inputs 

•  Power  sensing 

•  Monitors  64  IP  addresses 

•  Send  alerts  to  64  people 

•  8  methods  of  contact 

•  Calendar  scheduling 

•  Expands  to  256  sensors 

•  Remote  power  control 

•  Optional  camera 


The  Sensaphone  IMS-4000  Infrastructure 
Monitoring  System  monitors  critical  environ¬ 
mental  and  network  elements  in  your  server 
room,  data  center,  or  telecomm  installation  and 
reports  to  you  instantly  when  events  threaten 
your  infrastructure.  The  IMS-4000  keeps  watch 
so  you  don't  have  to.  See  these  features  and 
more  on  the  web  at  wvvw.ims-4000.com 


Packet  Sniffing  Made  Simple 


Iris®  Network  Traffic  Analyzer 


Decoding  and  Reconstruction 
of  Network  Traffic 


•  Network  Activity  Monitoring 

•  Comprehensive  Traffic  Stats 


•  Keyword  Filtering 

•  Alerting  Capabilities 

^'•c  '--’T'.  -Iglxl 
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Download  a  FREE  Whitepaper  and  FREE  Trial  of  Iris: 
www.eEye.com/Freelris  or  call  866.282.8276 


1.^ 


enables  instant  capturing,  decoding, 
on  of  network  activity. 
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m 

dtSearcK 


Instantly  Search 
Gigabytes  of  Text 

♦  Search  across  networks,  intranets,  and  web  sites 

♦  Publish  large  document  collections  to  web  or  CD/DVD 

♦  over  two  dozen  indexed,  unindexed,  fielded  and  full-text  search  options 

♦  highlights  hits  in  HTML  and  PDF  while  displaying  embedded  links,  formatting  and  flufitlPa 

♦  converts  other  file  types— word  processor,  database,  spreadsheet,  email,  ZIP,  XML, 
Unicode,  etc.— to  HTML  for  display  with  highlighted  hits 

♦  developer  products  have  easy  wizard-based  setup;  optional  API 


“Searches  at  blazing  speeds 

-  Computer  Reseller  Rows 
Test  Center 

“Intuitive  and  austere  ...  a 
superb  search  tool”  -  PC  World 

“Very  powerful ...  a  staggering 
number  of  ways  to  search” 

-  Windows  Magazine 

“Blindingly  fast”  -  Computer 
Forensics:  Incident 
Response  Essentials 

“A  powerful  text 
mining  engine ... 
effective  because 
of  the  level  of 
intelligence  it  displays 
-PCAI 

dtSearch  “covers  all  data 
sources ...  powerful  Web- 
based  engines”  -  cWeek 

5eewww.dtsearch.com  for. 

♦  developer  case  studies 

♦  fully-functlonal  evaluations 

1-800-IT-FINDS 

sales@dtsearch.com 


In  the  past  year  alone,  over 
half  of  the  current  Fortune  10 
have  purchased 
developer  or 
ne/wortr  licenses. 


Network 

*itrom^S800 


The  Smart  Choice  for 
Text  Retrieval  since  1991 


We  Buy  &  Sell 
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Juniper 


We  Buy  New/Used 

CISCO 


714-878-2953 

Call  us  today  to  recover 
your  assets 

You  got  the  gear, 
we  got  the  cash! 


r 

toll  free  800  879  8795 
ph:  +  7  402  575  3000 

OptimumDataInc. 

fax: +1  402575  2011 

www.optimumdata.com 

1 

12 

a 

Cisco  •  F 

•aradyne 

•  ADTRAN  ‘  Sun  •  Extreme  Networks 

eWan  is  pleased  to  offer  all  new  clients  One  Month  of  Internet  Bandwidth,  absolutely  free!  Simply  contact  one  of  our  representatives  for  details 


6  Co-tSjcation  Facilities 


Carrier  Redun 


CoWht  Delivery 


99.®®0%  SLA 


Ethornot  949-851-7190 


I  Wlao  Ar»a  NatworHa  Qn  the  web  at:  www.ewan1.com  •  Or  email  us  at:  sales@ewan1.com 

1700  E  Garry  Ave  Suite  203  *  Santa  Ana,  CA  •  92705  •  Fax:  949-852-2644  'I^  lixp  and  co-loc^  costs  not  >xiuded  Ctenlere$(xinsiMfixkKal  loop  and 


Hfiilii 


Thisl  the  Experts 


WWW.  con  ticomp.  com 
Call  us:  (310)  416-1200 


COMPUTERS 


Sl0C»  19i4 


ave  40-70%  on  Network  Equipm^^ 

Refurbished  Routers,  Switches, 

Access  Servers  and  Modules.  i  , 

'•'wIll,..,,.  ; 

Trust  .Value  II  ^  - - -  _ 

Quality  Parts. Great  Prices 

Call  today  for 
10%  off  1  item  (Up  to  $500) 

customers  only. 


CISCO  NORTEL 

NEW  •  REFURB  /  BUY  •  SELL 


mmmm^Calll 

^^Rgfurfa , 

Nortel  Rtystacfc 
4Be>24T  Smttck  Rtg.  $095 

Fax  Equipment  List 
To  801-377-0078 

Nl&RTEL 

NETWORKS 
Bay  Networks 
isce  SiiTiKi 


M8-C1K4C-ai  Reg.  $390 


HtrtriBaystack 
31ft-24T  Switch  Me-  S2M 


CitnZSOI  his.STTS' 


caetswon 


888-8LANWAN 

C«ll  lor  FtM  Quolf!  (888-852-6926) 


Visit  Us  On 
the  Web  At: 
www.nle.com 


FIBER  OPTIC  solution! 


•  Tl/El  &  T3/E3  Modems 

•  RS-232/422/485  Modems  and 
Multiplexers 

•  IBM  3270  Coax,  AS400  Twinox,  ond 
RS6000  Modems  and  Multiplexers 

•  LAN  -  Arcnet/Elhernet/Token  Ring 

•  Video/Audio/Hubs/Repeofers 

•  ISO-9001 


Toll  Free  866-SITe(h-l 
630-761-3640,  Fox  630-761-3644 
www.sitech-bitdriver.com  or  www.sitethfiber.com 


careers 


IT  careers.com 


GAVS  Information  Services  seeks  applications  for  a  number  of  positions 
located  in  Denver  or  Louisville.  Colorado.  Applicants  should  send 
resumes  to  Prakash  Vasant,  GAVS  Information  Services.  4155  E.  Jewell 
Avenue.  Suite  603.  Denver.  CO  80222. 

Please  specify  the  job  order  number  for  the  position(s)  that  you  are  apply¬ 
ing  for.  AH  positions  involve  full-life  cycle  software  development  for  soft¬ 
ware  applications  that  incorporate  client/server  technology,  are  web- 
based.  and/or  involve  data  warehousing  applications  and  data  reporting 
tools. 

Project  Manager: 

Requirements  include  Master's  Degree  in  Computer  Science. 
Engineering,  or  related  field,  including  Computer  Applications:  software 
development  experience;  working  knowledge  of  ACTA  and  Informatica 
Power  Center  Tools.  SAP.  Oracle  DBA  studio.  (Job  Order  No.  001). 

Team  Lead 

Requirements  include  Bachelor's  Degree  in  Computer  Science. 
Engineering,  or  related  field,  including  Computer  Applications;  software 
development  experience;  working  knowledge  of  Dispatch  1  ERP  software 
applications.  Oracle.  PCVS  Dimension  Version  Controller.  (Job  Order  No. 
002). 

Software  Application  Developer: 

Requirements  include  Bachelor's  Degree  in  Computer  Science. 
Engineering,  or  related  field,  including  Computer  Applications;  software 
development  experience;  working  knowledge  of  PL/SQL.  Infomaker.  Unix 
Shell  ^ripting.  Oracle  Enterprise  Management,  and  Data  Modeling.  (Job 
Older  No  003). 

Software  Application  Developer: 

Requirements  include  Bachelor's  Degree  in  Computer  Science. 
Engineering,  or  related  field;  software  development  experience;  working 
knowledge  of  Oracle.  ACTAWorks.  SAP  Basis  Administration.  BMC 
Patrolling  Software.  (Job  Order  No.  004). 

Software  Application  Developer: 

Requirements  include  Bachelor's  Degree  in  Computer  Science, 
Engineering,  or  related  field,  including  Computer  Engineering;  software 
development  experience;  working  knowledge  of  J2EE,  SQL/Server, 
Visual  Basic,  and  Automated  Testing.  (Job  Order  No.  005). 

Software  Application  Developer: 

Requirements  include  Bachelor's  Degree  in  Computer  Science, 
Engineering,  or  related  field  including  Computer  Applications:  software 
development  experience;  working  knowledge  of  Unix  Shell  Scripting. 
Oracle,  TOAD,  Oracle  Enterprise  Server  Manager.  (Job  Order  No.  006). 

Software  Application  Developer: 

Requirements  include  software  development  experience;  working  knowl¬ 
edge  of  ASP.  Oracle,  FoxPro,  Java.  (Job  Order  No.  007). 

Senior  Software  Application  Developer: 

Requirements  include  Bachelor's  Degree  in  Computer  Science, 
Engineering,  or  related  field,  including  Computer  Applications;  software 
development  experience;  working  knowledge  of  Dispatch-1  ERP 
Application.  Data  Warehousing.  PVCS  Dimensions,  Oracle  Relational 
Database  Management  Systems.  (Job  Order  No.  008). 

Software  Application  Developer: 

Requirements  include  Bachelor's  Degree  in  Computer  Science. 
Engineering,  or  related  field,  including  Production  Engineering;  software 
development  experience;  working  knowledge  of  Oracle  and  SQL/Server 
RDMBS,  J2EE  Web  server,  JDBC  Database  Adapter.  (Job  Order  No. 
009)  _ 


Telecomm  co.  in  Framingham, 
MA  seeks  Senior  Technical 
Services  (Support)  Engineer  to: 
provide  remote  and  on-site  tech¬ 
nical  training/engineering  sup¬ 
port;  isolate/resolve  customer 
software  and  systems  installa¬ 
tion  problems;  assist  customers 
to  debug  complex  telephony 
applications/systems;  provide 
engineering  consultations;  and 
interface  with  customers  on 
compatibility  of  solutions.  Must 
have:  BS  in  Elect.  Eng.,  Comp, 
Sci..  Engineering,  or  equiv:  4  yrs 
customer  support  engineering 
experience,  including  hands-on. 
real-time  technical  customer 
service  and  experience  with 
complex  software  issues  at 
embedded  technology  level. 
Salary  $96,115.50/yr.  Submit  2 
resumes  to  Case  #200202665 
Labor  Exchange  Office.  19 
Stamford  Street.  1st  fl,,  Boston. 
MA  02114. 


Tobin  International  seeks  appli¬ 
cants  for  Sr  DBA  Developer  in 
Denver.  CO  to  design,  install, 
maintain,  and  administer  Oracle 
relational  database  manage¬ 
ment  systems  lor  GIS  applica¬ 
tions  Requirements  for  position 
include  bachelor's  or  foreign 
equivalent  in  computer  science, 
computer  engineenng  or  related 
l.uld.  expenence  as  an  Oracle 
DBA  Developer  and  working 
knowledge  of  GIS  applications 
Respond  by  resume  to  Mary 
Kimball  Tobin  International. 
;  vfi  Broadway,  Suite  500. 
Di  '  .--  CO  80202 


Chief  computer  programmer 
needed  to  maintain  and  refine  a 
business  simulation  software 
system  that  is  used  for  business 
training  in  marketing,  manufac¬ 
turing.  accounting  and  finance. 
Requires  BS  or  foreign  equiva¬ 
lent  in  Computer  Science  or 
related  field  and  2  years  in  relat¬ 
ed  job  or  2  years  in  Computer 
Programming.  Experience  must 
include  2  years  designing, 
implementing,  testing,  develop¬ 
ing  and  maintaining  medium 
scale  software  systems;  design¬ 
ing  and  programming  SQL  data¬ 
bases;  application  development 
using  Delphi  programming  envi¬ 
ronment  and  development  of 
business  simulations;  and  1 
year  in  web  design  using  HTML, 
Macromedia  Dreamweaver, 
Photoshop  and  Macromedia 
Fireworks.  Send  resumes  to 
Ernest  R.  Cadotte,  c/o  ILS,  500 
Summit  Hill,  Knoxville,  TN 
37901. 


Software  Engineer,  TX  and  at 
various  client  sites  in  US: 
Perform  analysis,  design,  devel¬ 
opment.  deployment  &  imple¬ 
mentation  of  web  based  applica¬ 
tions  with  JAVA/J2EE  architec¬ 
ture;  provide  E-commerce  solu¬ 
tions.  Use  JAVA,  EJB.  JSP. 
SERVLETS,  XML.  XSLT,  J/kXP. 
LDAP,  Java  Script  &  DHTML. 
Develop  client  side  &  Intranet 
applications.  Req:  Bachelors  in 
Computer  Science  or  related  +  2 
yrs  in  job  or  2  yrs  as 
Programmer  Analyst  for  web- 
based  applications  Mail  resume 
to  HR,  DBR  Consultants.  5700 
Glenview  Ln..  The  Colony,  TX 
75056 


HCL  TECHNOLOGIES  AMERICA,  INC. 

HCL  Technologies  America,  Inc.  and  its  affiliate  companies,  like 
HCL  Technologies  (Illinois)  Inc.,  and  HCL  Technologies  (Mass.) 
Inc.,  have  multiple  openings  at  its  offices  in  Sunnyvale,  CA; 
Stamford  CT;  Plano  TX;  Florham  NJ,  Irvine  CA,  Vienna,  VA, 
Boston,  MA,  Chicago,  IL,  Detroit,  Ml  as  well  as  project  sites 
throughout  the  United  States  for  the  following  positions: 

Software  Engineers 
Programmer  Analysts 
Systems  Analysts 
Database  Administrators 
Hardware  Engineers 
Budget  Analysts 

Systems/Network  Administrators 
Project  Managers 

Account  Managers/Sales  Managers/Business  Managers 

Sales  Engineers 

Industrial  Engineers 

Market  Research  Analysts 

Management  Analysts 

Human  Resource  Representative 

Accountants 

Salary  will  be  commensurate  with  education  and  experience. 
All  positions  may  involve  travel  or  relocating  to  various  client 
sites  through  out  the  US. 

For  consideration  please  send  your  resume  to: 

HCL  Technologies  America,  Inc. 

Attn.:  HR  Dept.  (Computenvorld  Ad.) 

330  Potrero  Avenue 
Sunnyvale,  CA  94085 
Email:  cwjobs@hcltech.com 

Please  indicate  the  location  and  the  position  you  are 
applying  for. 

www.hcltechnologies.com 


COMPUTER  PROFESSIONALS 

Opportunities  for: 

•  PROCESS  CAPABILITY 
ANALYST 

•  QC  ANALYST 

•  WEB  ARCHITECTS/ 
DEVELOPERS 

•  SYSTEMS  ANALYSTS 

•  WEB  GRAPHIC  DESIGNERS 

•  NETWORK  ENGINEERS 

•  PROGRAMMER/ANALYSTS 

•  SOFTWARE  ENGINEERS 

SKILLS: 

•  COLD  FUSION  •  SPECTRA 

•  ORACLE  •  VISUAL  BASIC 

•  VISUAL  C++  •  SIEBEL  •  ASP 

•  COM,  DCOM  •  JSP  •  HTML 

•  JAVA,  JAVA  BEAN  •  EJB  JAVA 
SERVLETS  •  WEBSPHERE 

•  IBM  MQ  SERIES  •  XML.UML 

•  MTS  •  CLARIFY  •  PERL 

•  OBJECTPERL • SPYPERL 

•  SMALLTALK  •  PUSQL 

•  VISUAL  AGE  •  COBOL.  SPL. 
UNIX 

Visit  our  website  @ 
www.computerhorizons.com 

Attractive  salaries  and  benefits. 
Please  forward  your  resume  to: 
H.R.  Mgr.  Computer  Horizons 
Corp.,  49  Old  Bloomfield 
Avenue,  Mountain  Lakes,  New 
Jersey  07046-1495.  Call 
973-299-4000.  E-mail:  jobs@ 
computerhorizons.com.  An 
Equal  Opportunity  Employer  M/F. 


Software  Engineer/Lead 
person  sought  by  Mfg.  & 
Installer  of  Shade  Struc¬ 
tures  located  in  Dallas,  TX. 
Function  as  the  lead  for  two 
other  software  engineers. 
Min  requirements  -  Bach 
degree  or  equiv.  in  Comp. 
Science  or  Physics  and 
Math  +  5  yrs.  exp.  Send 
resume  to:  G  Subel,  Sun 
Ports  Int'l,  Inc.,  8319 
Chancellor  Row,  Dallas,  TX 
75247. 


Software  Engineer  -  Boston, 
MA:  Software  developmt  for 
STP  (Straight  -  Through- 
Processing)  global  securities 
trade  processing/mgmt  solu¬ 
tions,  &  Meta  Info.  Modeling  in 
relational  format  using  UML  & 
Gang-of-4  Design  Patterns. 
Use  C/C++,  Java  (J2EE, 
servlets,  EJB,  Java  Native 
Interface),  OOD/OOA,  UNIX 
shell  scripts,  RMI,  XSLT,  & 
VBScript  to  code  features  in 
Oracle,  Weblogic  Server,  MS  & 
Weblogic  Enterprise  environ¬ 
ments  to  account  for  trade 
cycles,  trade  settlemt  models,  & 
finan'l  svcs  industry  infrastruc¬ 
tures.  Use  PL/SQL.  UML, 
Rational  Rose  &  TogetherJ  to 
develop/  implement  DB  code 
generators/search  structures. 
Use  Oasys  Global  API  to  devel¬ 
op/enhance  interfaces  between 
CTM  &  Oasys  Global  systems. 
Ensure  system  integration/deliv¬ 
ery  for  ALERT  CTM  systems. 
Provide  technical  leadership  to 
small  teams;  &  oversee  life  cycle 
of  core  product  features  cradle- 
to-grave;  design,  implementa¬ 
tion,  unit  testing,  documentation, 
bug  fixing.  Design/implement 
trade  message  validation  sys¬ 
tems  in  ISO15022  &  MT511  for¬ 
mats.  Minimum  Reqmts: 
Master's  degree  or  foreign 
equiv.  in  Computer  Sci.. 
Computer  Applic'ns  or  MIS  +  3 
yrs  of  exp.  in  job  offered  or  in 
jobs  meeting  following  reqmts:  3 
yrs  of  software  developmt  expe¬ 
rience  in  Java;  &  1  year  in:  STP 
trade  mgmt  applic'ns:  TogetherJ 
&  Gang-of-4  Design  Pttns  for 
Meta  Info.  Modeling:  Oasys 
Global  API;  ALERT  CTM 
applic'n;  &  ISO15022  &  MT511 
message  formats.  Exp.  may  be 
gained  concurrently.  Hours:  M-F. 
9  am-5  pm.  Rate  of  Pay: 
$95.586/yr.  Pis  submit  2  copies 
of  resume  to:  Case  # 

200202882,  Labor  Exchange 
Office.  19  Stamford  St.  1st  FI, 
Boston.  MA  02114. 


Konboy  is  a  premier  global 
systems  integrator  that  provides 
high-quality,  high-value  solutions 
to  the  insurance,  banking,  credit 
card,  consumer  lending  and 
securities  industries.  We  provide 
a  complete  life-cycle  of  services 
including  program  management, 
business  analysis,  technology 
planning,  architecture, 
opplicotion  development, 
maintenance  and  support.  Our 
specialized  services  include 
business  intelligence,  package 
selection,  customization, 
implementation  and  testing. 

The  following  opportunities  ore 
based  at  our  corporate 
headquarters  in  Chicago  and 
locations  nationwide. 

We  are  seeking  candidates  with 
technical  skills  in  some  of  the 
following  areas:  JAVA,  J2EE, 
CXDAD,  WebSphere,  XAAL,  .Net, 
Ir^enium,  COBOL,  CICS,  DB2, 
JQ.,  and  VisionPlus  expertise  in 
an  MVS  environment. 

•  Project  Managers 

•  Technical  Architects 

•  Project  Leads 

•  Sr.  Programmer/ 
Analysts 

•  Associate  Consultant 

For  consideration,  forward 
response  to:  Kanbay,  Inc.,  6400 
Shafer  Ct.,  Suite  1 00,  Rosemont, 
IL  60018.  Fax;  847-318-0784. 
Email:  rstewart@kanbay.com. 
Please  reference  code  CW0903 
in  all  correspondence.  Kanbay  is 
an  Affirmative  Action 
Employer/EOE  organization. 


www.kanbay.com 


Computers  -  Programmer 
Analysts  needed.  Seeking 
qual.  candidates  possess¬ 
ing  BS  or  equiv.  and/or  rele¬ 
vant  work  exp.  Part  of  the 
req.  relevant  work  exp. 
must  include  2  yrs.  working 
with  iPlanet,  Oracle,  LJnix 
Kernel  Tuning  &  System 
administration.  Mail  resume 
&  ref.  to:  Object  Solutions, 
Inc.,  Attn:  HR,  3025  Harbor 
Lane,  #312,  Plymouth,  MN 
55447-5119. 


Systems  Analyst:  Design  soft¬ 
ware  programs  for  company  in 
the  area  of  accounting;  Creates 
&  maintains  company  database; 
Designs  &  maintains  the  Internet 
&  e-business  strategy  &  the 
website  of  the  company;  Works 
w/Macromedia  flash  &  Photo¬ 
shop;  Works  w/ASP  &  cold 
fusion;  Works  w/SQL  server  7.0- 
BS  in  Computer  Information 
Systems  &  2  yrs  of  exp.,40-per 
wk,  9-6PM,  Fax  resume  to; 
Alexander  Motors  Int.  Corp. 
Attn:  David  Adrian  Soae  (000) 
000-0000 


Software  Engineers  (multi¬ 
ple  positions)  sought  by 
computer  s/w  development 
firm  in  Jacksonville,  FL. 
Must  have  Bach  in  Comp 
Sci.,  Engg  or  equiv  and  two 
yr  relevant  exp  using  NLP 
algorithms.  VC++.  Install- 
Shield.  VB  6.0.  ASP.  XML, 
SQL  Server  2000,  and 
Win32  API.  Respond  to;  HR 
Dept..  Intelligenxia,  Inc., 
4905  Belfort  Rd,,  Ste  110, 
Jacksonville,  FL  32256. 


/kztek  Engineering,  Inc.  seeks  Sr. 
Systems  Engineer  to  work  in 
Boulder,  CO  to  engage  in  full  life 
cycle  development  in  telecom 
systems.  Requires  bachelor's  in 
electrical  engineering:  4  years 
experience  in  full  life  cycle  deveF 
opment  of  systems  requirements 
and  hardware  architecture  for 
Class  4  and  Class  5  central  office 
systems  platform  and  in  ASIC 
and  FPGA  design  using  HDL  lan¬ 
guages:  and  working  knowledge 
in  voice  over  packet  (VOP)  gate¬ 
way  design  and  IP  and  ATM  sys¬ 
tem  design  using  C/C++  pro¬ 
gramming  languages.  Respond 
by  resume  to  Debra  Chemak. 
Aztek  Engineering.  Inc.,  2477 
55th  St.,  Suite  202.  Boulder,  CO 
80301  and  refer  to  job  #0782. 


Software  Engineers  to  design, 
develop,  test  wireless/web  soft¬ 
ware  systems  &  services  for 
devices  including  WAP  Phone, 
Pocket  PC's,  etc.  using  Java, 
JSP,  VB,  VBA,  SQL,  Web 
Servers,  Weblogic.  HTML,  Ms 
Access  and  WCTP  under 
Windows,  UNIX  OS;  perform 
req  analysis  to  determine  tech, 
feasibility;  study/evaluate  new 
tech. /methodologies;  provide 
guidance  for  complex  user  prob¬ 
lems.  Require:  M.S.  or  foreign 
equiv.  in  CS/Engg.  (any  branch). 
Competitive  salary.  F/T. 
Respond  to:  HR,  Air2Web,  Inc., 
1230  Peachtree  Street  NE, 
Promenade  II,  12th  FL.  Atlanta, 
GA  30309.a 


Advansoft  (Soft  O  Soft)  is  look¬ 
ing  for  program  or  system  ana¬ 
lysts,  IT  engineers.  Candidate 
must  have  BS  or  equivalent. 
Exp.  in  IT  area  such  as  Oracle, 
Java,  VB,  WebSphere/Weblogic 
etc  is  plus.  Travel  maybe 
required  for  some  position.  Send 
resumes  to: 

info@advansoft.com.  EOE 

Picobyte  Consulting  is  looking 
for  programmer/system  ana¬ 
lysts,  software/project  engi¬ 
neers.  Req.  BS/MS  with  1-year 
experience  in  the  IT  field.  Strong 
skills  in  JDEdwards  world  , 
Oneworld,  Oracle,  VB,  SQL  pre¬ 
ferred.  Send  resumes  to  1500  S. 
6th  St.  Ste.  B,  Springfield,  IL 
62703.  EOE. 


Seeking  qualified  applicants  for  the 
following  positions  in  Memphis/ 
Collierville.  TN:  Senior  Systems 
Programmer.  Devise  procedures  to 
solve  complex  systems  and  appli¬ 
cations  problems.  Requirements; 
Bachelors  degree  or  equivalent"  In 
computer  science,  MIS.  engineer¬ 
ing,  mathematics  or  related  field 
plus  5  years  of  experience  in  sys¬ 
tems  programming.  Experience 
with  retail  point-of-sale  systems/ 
applications  development  using 
Java:  CORBA,  and  systems/lnte- 
gration/user  acceptance  testing 
also  required.  "Masters  degree  in 
appropriate  field  will  offset  2  years 
of  general  experience.  Submit 
resumes  to  Sibi  George,  FedEx 
Corporate  Services.  1900  Summit 
Tower  Blvd.,  Suite  1400,  Orlando. 
FL  32810.  EOEM/F/D/V. 


PROGRAMMER  ANALYSTS  tor 
Hickory  Hills.  IL  office  Design  & 
Develop  software  applications 
using  Oracle.  XML.  UML,  C++, 
Sybase.  Interwoven.  Coolgen. 
ClearCase.  ClearQuest,  PVCS, 
UNIX  Bachelors  req'd  in 
Computers.  Engineenng.  Math 
or  related  field  of  study  +2  yrs  of 
related  exp  40  hrs/wk  Must 
have  legal  authonty  to  work  per¬ 
manently  in  the  U  S.  Send 
resume  to  HR  Manager.  Compro 
Consuibng  Group.  Inc  ,  8619  W 
95th  St.,  Hickory  Hills,  IL  60457 
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Database  Administrator:  Install 
and  test  database  and  applica¬ 
tion  configuration:  establish  and 
maintain  test  and  production 
databases:  assure  database 
security;  install  all  system  cus¬ 
tomization;  perform  all  neces¬ 
sary  database  tuning;  perform 
regular  database  audits  to  check 
data  integnty,  perform  and  test 
backup  and  recovery  proce¬ 
dures,  provide  application  devel¬ 
opment  support  to  developers. 
Req.  BS  or  equivalent  in  CS  or 
CIS  +  nine  months  experience  in 
job  offered  or  as  Tech.  Support 
Engineer.  Must  be  Oracle  and 
Microsoft  certified.  Must  be  pro¬ 
ficient  in  Advance  C/S,  Advance 
Web  Access.  PowerBuilder/ 
InfoMaker,  Crystal  Reports, 
ASP,  and  Java  Script.  40  hr/wk, 
8am-5pm.  Contact  Herbert  J. 
Brunswick,  Georgia  Tech 
Foundation  Inc.,  760  Spring 
Street,  NW,  Suite  400,  Atlanta, 
GA  30332-0182 


SYSTEMS  ANALYST  to  provide 
on-site  consulting  in  analysis, 
design,  development  and  imple¬ 
mentation  of  business  to  busi¬ 
ness  and  enterprise  integrations 
of  applications  in  manufacturing, 
distribution  and  retail  industries, 
on  AS/400  with  WebMethods 
B2B  server,  EDI  to  support 
enterprise  applications  such  as 
Shop  Floor  tracking  system 
(MESA),  ASP,  .Net  Technology, 
VBScript,  Java,  JavaScript, 
RPG,  COBOL  and  webMethods 
integration  tools.  Require: 
Bachelor  in  Computer  or 
Electrical  Engineering  with  two 
years  experience  In  the  job 
offered.  40%  travel  to  client  sites 
within  the  United  States 
required.  Competitive  salary 
and  benefits,  40  hours/week,  8 
am  to  5  pm,  M-F.  Mail  resume 
to:  Vice  President,  Frontline 
Consulting  Services.  Inc.,  8701 
Mallard  Creek  Road,  Charlotte, 
NC  28262. 


Sr.  Programmer/Analyst  to 
design,  develop,  implement  & 
maintain  computer  systems 
including  database  architecture, 
databases,  e-commerce  appli¬ 
cations  &  web  pages,  intranet, 
internet  &  network  infrastructure: 
creation  of  project  plans,  sched¬ 
ules,  &  estimates;  preparation  of 
system  documentation  &  trans¬ 
formation  processes  to  support 
CPH  Mall  and  other  systems  uti¬ 
lizing  XML,  XSL,  JavaScript, 
data  modeling,  TBC  publishing 
system  &  CPH  Mall  database, 
Microsoft  Commerce  Server 
2000  and  DBMS  (RMS,  SQL 
Server  and  Oracle).  Requires 
BS  in  Computer  Science, 
Engineering,  MIS,  SSM  or  relat¬ 
ed  field  plus  2  yrs  experience  as 
Programmer/Analyst.  Send 
resumes  to  D.  Fiedler.  Human 
Resources.  Lutheran  Church- 
Missouri  Synod,  1333  S. 
Kirkwood  Rd.,  St.  Louis,  MO 
63122. 


COMPUTER  /  PROGRAMMER 
ANALYST  (Manh  ).  Study  and 
evaluate  existing  systems  and 
define  appropriate  systems; 
analyze  system  flows  and  pro¬ 
gram  specifications;  evaluates 
user  requests  for  new  or  modi¬ 
fied  programs;  writes  manuals 
for  users  to  describe  installation 
and  operating  procedures;  train 
users.  Environment:  Novell- 
Netware,  MS-DOS.  Delphi, 
Cognos  Impromptu.  Visual 
Basic.  Oracle,  and  Powerplay.  2 
yrs  exp  ,  40  hrs/wk,  9AM  -  5PM. 
$87,235/yr.  B.S.  Computer 
Science.  Send  resume  in  dupli¬ 
cate  to:  BA#2714,  PO.  Box 
703,  New  York,  NY  10014-0703. 


Software  Engineer  sought  by 
fund  company  in  Denver.  CO  to 
work  in  Denver  &  other  unantici¬ 
pated  job  sites  in  the  US  to 
design,  develop  &  implement 
software  applications  which  run 
on  mainframe. Windows  NT. 
AS400.  &  Unix  operating  sys¬ 
tems.  Implement  the  software 
applications  which  run  on  open 
systems  &  integrate  them  with 
legacy  systems  using  software 
languages  &  tools  Including 
Oracle.  Java,  JBuilder,  Unix, 
TSO/ISPF,  JCL,  COBOL, 
AS400,  SQL  Loader  &  Autosys. 
Develop  interfaces  between 
open  &  legacy  systems  &  data¬ 
base  management  systems,  & 
manage  the  migration  of  data 
between  the  systems.  Design  & 
develop  customizations,  mainte¬ 
nance  and/or  enhancements  to 
the  existing  software  applica¬ 
tions.  Debug  the  applications  & 
engage  in  problem  solving  & 
business  process  re-engineer¬ 
ing.  Provide  user  training  &  sup¬ 
port.  Use  Java  programming 
language  &  proprietary  case 
tools.  Requires  Master's  or 
equivalent-specifically,  a  Mast¬ 
er's  or  foreign  equivalent  in  com¬ 
puter  science,  or  a  related  field 
(including  electronic  engineer¬ 
ing);  OR  a  Bachelor's  or  foreign 
equivalent  in  computer  sci¬ 
ence, or  a  related  field  (including 
electronic  engineering),  plus  five 
years  of  progressive  experience; 
working  knowledge  of  open  & 
legacy  applications  including 
Oracle,  Java.  Unix,  &  AS400. 
8am-5pm,  M-F;  $75, 000/year. 
Respond  by  resume  to 
Employment  Programs,  PO  Box 
46547,  Denver.  CO  80202  refer 
to  005056821 


Programmer  Analyst:  Respon¬ 
sible  for  Analysis  and  Design  of 
database  (ORACLE  7.3/8.0/81). 
Development  and  Maintenance 
of  Oracle  Forms  and  Reports, 
Graphics,  (Forms  4. 5/5. 0/6.0 
and  Reports  6. 0/5. 0,2. 5). 
Develop  Stored  Procedures 
(PL/SQL  8.0/3.0).  Develop  Shell 
Scripts,  AWK,  Komshell,  UNIX 
and  PERL.  Bachelors  Degree  in 
Computer  Science  or  relevant 
field  with  4  Years  of  work  experi¬ 
ence  in  related  occupation.  49 
Hrs./Week.,  $68, 000/annum. 
Must  be  willing  to  relocate  to 
various  unanticipated  work  loca¬ 
tions  throughout  the  USA  every 
4  to  10  months,  employer  paid. 
Must  have  proof  of  legal  author¬ 
ity  to  work  in  the  United  States. 
Send  your  resumes  to  the  Iowa 
Workforce  Center,  215  Watson 
Powell  Jr.  Way.  #100,  Des 
Moines,  Iowa  50309-1727. 
Please  refer  to  Job  Order 
IA1101785.  Employer  paid 
advertisement. 


Tierl  Innovation  seeks  appli¬ 
cants  for  the  position  of  Senior 
Consultant  in  Denver,  CO  to 
design,  develop  and  configure 
Siebel  applications  to  meet  cus¬ 
tomer  requirements,  especially 
in  the  pharmaceutical,  clinical 
trials,  energy  and  financial 
industries.  Requirements  for  this 
position  include  a  bachelor's 
degree  in  business  or  computer 
science  and  3  yr  exp.  as  a  soft¬ 
ware  engineer  implementing 
Siebel  packages  and  in  data 
conversion/migration  and  inte¬ 
gration  experience  in  various 
Siebel  vertical/horizontal  pack¬ 
ages.  Requirements  also 
Include  working  knowledge  of 
Siebel  eClinical,  ePharma, 
eEnergy,  Sales  Force 
Automation  and  Call  Center 
packages,  as  well  as  Informatica 
6.X/5.X,  Siebel  7.x,  Siebel  EAI, 
Microsoft  SQL  Server.  Oracle 
8.x  and  Unix.  Applicants  must 
have  Siebel  7  certification 
Respond  by  resume  to  Jill 
Colbeck,  Tierl  Innovation,  4600 
S.  Ulster  St..  Ste.  700,  Denver. 
CO  80237. 


Principal  Software  Engineer  will 
make  enhancements  to  existing 
applications  and  initiate  &  archi¬ 
tect  new  development  projects: 
participate  in  client  server  appli¬ 
cation  design  and  development: 
apply  knowledge  of  the  full 
product  development  life  cycle, 
from  requirements  definition 
through  architecture,  coding, 
and  release  to  develop  &  main¬ 
tain  Windows  &  Web-based 
applications  related  to  Co's  port¬ 
folio  &  performance  systems 
technology  architecture.  Will 
review  portfolio  management 
requirements  &  design  and  code 
based  upon  developed  specs; 
solve  technical  problems  &  alert 
technical  lead  of  issues/obsta¬ 
cles;  work  directly  w/business 
users  to  specify  functional  and 
technical  requirements;  and  also 
work  w/junior  Software  Engin¬ 
eers,  Database  Administrators, 
Systems  Administrators; 
Users  &  Management  to  mana¬ 
ge/control  design,  development, 
testing  and  software  implemen¬ 
tation  related  to  portfolio  &  per¬ 
formance  systems. 

Will  provide  estimates  of  work 
and  participate  in  project  plan¬ 
ning;  perform  internal  scripting 
to  develop  dynamic  code  in 
secure  web  applications. 
Requires  Bachelor's  or  equiva¬ 
lent  in  C.Sc.,  Engineering, 
Math,  or  Physics  plus  5  years  in 
job  offered  OR  5  years  exper  in 
Sybase  database  development. 
Candidate  must  also  possess 
demonstrated  expertise  writing 
UNIX  shell  scripts  and  stored 
procedures  in  SQL;  demonstrat¬ 
ed  expertise  programming  data¬ 
base  loaders  and  extract  jobs 
using  Autosys  &  demonstrated 
expertise  managing  Sybase 
replication  functions,  Sal: 
$90,500/yr,  M-F,  9A-5P.  Send  2 
resumes  to  Case  #200202853, 
Labor  Exchange  Office,  19 
Staniford  St.,  Istfl.,  Boston,  MA 
02114.  EOE.  Applicants  must  be 
U.S.  workers  eligible  to  accept 
full-time  U.S.  employment  in 
U.S. 


SOFTWARE  ENGINEERS  (12 
positions):  require  Bachelor's  or 
equivalent  in  Engineering/ 
Computer  Science/Mathema¬ 
tics/  Science  or  closely  related 
field  with  two  years  experience 
providing  skills  In  described 
duties,  at  $79,000  per  year. 
Provide  on-site  consulting  in 
design,  analysis  and  develop¬ 
ment  of  software  applications  for 
legacy  systems  in  IBM  main¬ 
frame  environment;  develop¬ 
ment  and  administration  in 
Oracle,  DB2,  SQL  Server  and 
Sybase;  e-commerce  and  web 
applications  development  in 
Microsoft,  Java  and  related  tech¬ 
nologies;  network  management 
systems  development  with 
Netscape  Server  and  related 
tools;  SAP  R/3  applications  on 
Windows  with  DOS  and  ABAP/4 
and  related  modules.  40%  travel 
to  client  sites  in  the  United 
States.  Mail  resumes  to:  YASH 
Technologies.  Inc.,  605  17th 
Avenue,  Suite  1,  East  Moline,  IL 
61244. 


Computer  Supp.  N'work  Enng: 
Design,  install  &  support  multi- 
vendor  network  services  and 
components.  Requires:  2  yrs. 
exp.  in  job  ofTd  or  2  yrs  exp.  as 
a  Tech  Analyst  or  related  with 
same  duties  &  B.S.  in  Comp. 
Sci.,  Elect  Engg  or  related  or  3 
yrs  exp  in  job  ofTd  or  3  yrs  exp 
as  a  Tech  Analyst  or  related  with 
same  duties  &  2  yrs  college  ed 
in  Comp.  Sci.,  Elect  Enng  or 
related.  Exp.  ref.  required.  Send 
resume  to:  Vertex  Soft,  Inc.,  622 
Georges  Road.  Ste  104,  N. 
Brunswick,  NJ  08902. 


For  over  20  years,  Syntel  employees  across  North  America,  Europe,  and 
Asia  have  helped  build  advanced  information  technology  systems  for  lead¬ 
ing  Fortune  500  companies  and  government  organizations  to  improve  their 
efficiency  and  competitiveness.  Today,  Syntel  professionals  are  building 
rewarding  careers  by  providing  solutions  in  e-business,  CRM,  Web  Design 
and  Data  Warehousing. 

Come  discover  why  Forbes  magazine  placed  Syntel  second  on  its  list  of 
"The  200  Best  Small  Companies  in  America”  and  Business  Week  ranked 
us  #1 1  on  its  list  of  Hot  Growth  Companies. 

Due  to  our  rapid  growth,  we  have  immediate,  full-time  opportunities  for 
both  entry-level  and  experienced  Software  Engineers,  Consultants, 
Programmers,  Programmer/ Analysts,  Project  Leaders,  Project  Managers, 
Supervisors,  Database  Administrators,  Computer  Personnel  Managers 
and  Computer  Operations/ Account  Managers/ Account  Executives  with 
any  of  the  following  skills: 

Mainframe 

•  IMS  DB/DC  or  DB2,  MVS/ESA, 

COBOL,  CICS 


•  Focus,  IDMS  or  SAS 


DBA 

•  ORACLE  or  SYBASE 

Client-Server/WEB 

•  Siebel 

•  Websphere 

•  Com/DCom 

•  Web  Architects 

•  Datawarehousing 

•  Informix,  C  or  UNIX 

•  Oracle  Developer  or  Designer  2000 

•  JAVA,  HTML,  Active  X 

•  Web  Commerce 

•  SAP/R3,  ABAP/4  or  FICO  or  MM 
&SD 


•  DB2 


•  Oracle  Applications  &  Tools 

•  Lotus  Notes  Developer 

•  UNIX  System  Administrator 

•  UNIX,  C,  C++,  Visual  C-l-i-,  CORBA, 
OOD  or  OOPS 

•  WinNT 

•  Sybase,  Access  or  SQL  server 

•  PeopleSoft 

•  Visual  Basic 

•  PowerBuilder 

•  lEF 


Account  Executives,  Account  Managers  and 
Business  Deveiopment/ Account  Specialist 

positions  available. 

Some  positions  require  a  Bachelor's  degree,  others  a  Master's  degree.  We  also 
accept  the  equivalent  of  the  degree  in  education  and  experience. 

With  Syntel  (NASDAQ;  SYfTD,  you'll  enjoy  excellent  compensation,  full  benefits, 
employee  stock  purchase  plan  and  more.  Please  forward  your  resume  and 
salary  requirements  to:  Syntel,  inc.,  Attn:  Recruiting  Manager-LD09, 

525  E.  Big  Beaver,  Suite  300,  Troy,  Ml  48083.  Phone:  248-619-2800; 
Fax:  248-619-2888.  Equal  Opportunity  Employer. 
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iiinivw.syiitelinc.com 
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careers.com 


Regional  Sales 
Manager  west  coast 


IT  Careers  has  an  exciting  opportunity  for  a  high¬ 
ly  motivated  and  seasoned  sales  professional  to 
join  our  team.  This  Regional  Manager  will  be 
responsible  for  selling  integrated  recruitment 
advertising  packages  consisting  of  Print  (within 
our  network  of  publications),  Online  and 
Recruitment  Event  Show  Booths,  as  well  as  other 
products  as  they  become  established.  Emphasis 
will  be  on  generating  revenue  by  developing  new 
accounts,  but  this  individual  will  be  responsible 
for  growing  existing  accounts  and  servicing 
recruitment  ad  agencies  ensuring  that  IT  Careers 
is  top  of  mind.  The  candidate  will  be  the  part  of  a 
sales  team  working  to  set  the  territory  strategy, 
therefore  collaborative  selling  skills  are  critical.  In 
addition,  this  person  must  have  a  solid  under¬ 
standing  of  the  IT  recruitment  market,  be  an 
effective  communicator  and  negotiator  and  have 
a  proven  record  in  sales.  Minimum  of  5+  years  of 
outside  sales  experience  required,  preferably  in 
recruitment  advertising  sales.  This  position  will 
be  based  in  the  candidate's  home  office  on  the 
west  coast.  Travel  is  required. 


If  interested,  please  email  a  resume  to 
jcJobs@idg.com  or  fax  to  (508)935-4600. 
Please  include  code  ITC922  in  the  subject 
line. 


■  T 


Project  Leader-Lead  and  man¬ 
age  IT  projects  developed  on 
the  client/server  web  environ¬ 
ment  within  prescribed  quaiity. 
time  frame,  and  budget:  ascer¬ 
tain  user  requirement  and  pro¬ 
gram  objective;  determine 
methodoiogy  and  design 
approaches;  guide  team  mem¬ 
bers  with  technical  issues; 
assign  and  review  work  of  pro¬ 
gramming  personnel:  track  pro¬ 
ject  progress:  recruit  and  train 
new  IT  consultants;  and 
research  in  new  technology.  Use 
various  tools  and  platforms  such 
as  C/C++.  SQL,  PL/SQL. 
InterDev,  ASP,  VBScript,  Oracle 
Database,  and  FlP-Unix.  Reqs: 
Bachelor  or  equivalent  foreign 
degree  in  Computer  Science  or 
Computer  Engineering  and  5 
years  experience  in  a  related 
occupation  as  a  Software 
Engineer,  Programmer  Analyst, 
or  Systems  Analyst.  Must  have  3 
years  experience  with  develop¬ 
ment  system  on  the  client/server 
environment  and  using  at  least  5 
of  the  tools/platforms  listed 
above.  40  hrs/wk.  7:00a-4:00p. 
M-F,  $74,500.00/yr,  Overtime 
$35. 82/hr.  Work  location: 
Vanous  unanticipated  locations 
throughout  the  US.  Send 
resume  to  Workforce 

Development  Programs,  P.O. 
Box  46547.  Denver,  CO  80202 
and  refer  to  order  #CO  5057516 
Application  is  by  resume  only. 

Senior  Field  Service  Engineer  - 
Install  and  accept  all  of  the  com¬ 
pany's  test  systems  at  customer 
sites.  Install  tester  software  and 
connect  to  customer  network. 
Keep  records  of  the  test  system 
up-time  and  customer  part 
usage.  Perform  telephone  trou¬ 
bleshooting  with  the  customer. 
Schedule  preventive  mainte¬ 
nance  quarterly  to  achieve  opti¬ 
mum  system  performance. 
Monitor  performance  on  all  of 
the  company's  test  equipment. 
Schedule  engineering  change 
orders  implementation  to  modify 
equipment  design.  Travel  to 
customer  sites  and  liaison  with 
customer's  engineering  staff  to 
resolve  difficult  technical  prob¬ 
lems.  Flelp  to  develop  and  opti¬ 
mize  test  program  for  best  test 
results.  Requirements  include  a 
Bachelor's  degree  or  equivalent 
in  Electrical  Engineering  or  relat¬ 
ed  field  and  two  years  of  experi¬ 
ence  in  the  job  offered  or  related 
field  of  supporting  semiconduc¬ 
tor  capital  equipment.  Requires 
approximately  50%  domestic 
travel.  Applicants  must  have 
unrestricted  authorization  to 
work  in  the  United  States, 
Salary  $82, 202/year.  40 

hours/wk.  Respond  with  two 
copies  of  resume  to  Case 
#200202719,  Labor  Exchange 
Office,  19  Staniford  SI.,  1st  FL, 
Boston.  MA  02114 

Infomerica  is  looking  for  sys¬ 
tem/programmer  analysts,  soft¬ 
ware/project  engineers  &  com¬ 
puter  consultants  working  at  dif¬ 
ferent  sites  (travel  required). 
Candidates  must  have  BS  with 
exp  m  IT  fields.  Skills  of  Oracle, 
Informix.  Java  preferred  Send 
resumes  to  info@infomeri- 
cavK.com 

K&M  Soflech  is  looking  for  pro¬ 
grammer/system  system,  sofl- 
—“■e/projecl  engirveers  or  IT  pro- 
Irsi-innals  Both  entry  &  expen- 
.  cod  levels  needed  Some 
p;  '-.-I  require  travel  Skills  m 
C++  7B.  Oracle  SAP.  SQL  are 
p<>'  Please  sand  resumes  to 
H  .  -^kmsoftech.com.  EOE 

Engineer,  IT  Tech.  Develop¬ 
ment:  Web  related  &  server- 
side  R&D,  w/  Object  Oriented 
Design.  JAVA  app.  develop¬ 
ment;  implement  Contents  Mgmt 
Syst.:  use  BEA  Weblogic, 
Apache  Web  server  etc.  for 
campaign  mgmt.  personalization 
of  company  websites,  transfer  of 
SVC  to  Web-based.  Create 
enterpnse  connections  &  data- 
syrK  between  web  servers  in  US 
&  Korea  w/  JMS.  B  S  in 
Computer  or  related  eng'ring,  + 
2+  years  J2EE  Technology 
implementation.  BEA  Weblogic 
&  core  server-side  programming 
in  JAVA  Send  resume  to  Robert 
Ang.  Korean  Air,  1813  Wilshire 
Blvd  ,  Los  Angeles.  CA  90057. 

SERVICE  ENGINEER 
Apply  Photomask  technology  to 
install  and  repair  secondary 
electron  microscopy  and  vector 
scan  electron-beam  semicon¬ 
ductor  mask  writing  system. 
Utilize  experience  in  mechani¬ 
cal/CAD  design,  multiple  com¬ 
ponents  of  mast/mask-material 
technology  to  analyze  and  fol¬ 
low  blueprints  and  instruction, 
and  electron  beam  theories  in 
semiconductor  mask.  Serve 
electron  beam  and  electron 
optics  equipment.  Operate  on 
UNIX  networking  system, 
metrology  tools  and  defect 
analysis  to  figure  out  contami¬ 
nation  issues.  Train  customer's 
personnel  in  adjusting,  maintain¬ 
ing  and  repairing  1C  design  lay¬ 
out.  Consult  with  customer  devi¬ 
ation  of  machine  operation  from 
specifications,  explain  reasons 
for  changes  and  help  customer 
optimize  production  process 
variable.  Requires  master  in 
chemistry  and  3  yr.  exp.  in  posi¬ 
tion  offered  or  as  Product 
Engineer.  Send  resume  to 
OESS  Corporation,  c/o  Micron 
Technology.  8000  S.  Federal 
Way.  M.S.  01-800,  Boise,  ID 
83707-0006.  Attn:  James 
Hidaka. 


Telecomm  co.  in  Framingham, 
MA  seeks  Senior  Technical 
Services  (Support)  Engineer  to: 
provide  remote/on-site  technical 
training/engineering  support; 
isolate/resolve  customer  soft¬ 
ware  and  systems  installation 
problems;  assist  customers  to 
debug  complex  telephony  appli¬ 
cations/systems;  and  provide 
engineering  consultations.  Must 
have:  BS  in  Elec.  Eng.,  Comp, 
Sci.,  Engineering,  or  equiv;  4  yrs 
communication  systems  devel¬ 
opment  exp.  using  C;  and 
knowledge  of  2  of  the  following: 
SS7,  ISDN,  wireless  technology, 
IP  Telephony  &  Switching,  Fax 
and  CTI.  Salary  $92,833/yr. 
Submit  2  resumes  to  Case 
#200202668  Labor  Exchange 
Office,  19  Staniford  Street,  1st 
fl.,  Boston.  MA  02114. 


Software  Developer 

Design  &  develop  copy  pro¬ 
tection  &  data  protection  soft¬ 
ware.  B.S.  in  CS,  or  rel. 
w/abil.  to  use  C,  Assembler, 
C++,  TCP/IP,  PKI  technolo¬ 
gies,  copy  protection  tech¬ 
nologies,  authentication  & 
cryptographic  algorithms  & 
technologies.  40.0  hr/wk.  9-5. 
Send  resume  to:  Ms. 
Rosemarie  Marx,  Pres.,  Marx 
Software  Security,  2900 
Chamblee  Tucker  Road,  NE, 
Bldg.  9,  Ste.  100,  Atlanta,  GA 
30341 


Programmer  Analysts  for 
Omaha,  NE  office.  Develop  & 
maintain  software  applications 
using  DB2,  IMS.  DB/DC/ADF, 
Teradata,  Datacom.  DB/DC, 
PU1,  Assmbler.  Natural 
ADABAS.  Bachelors  req'd  in 
Computers.  Math  or  related  field 
of  study  +2  yrs  of  related  exp  .40 
hrs/wk.  Must  have  legal  authori¬ 
ty  to  work  permanently  in  the 
U  S.  Contact  FIR  Manager. 
Computer  Manpower  USA.  Inc. 
15  OkJ  Forge  Dr,  Wamen,  NJ 
07059 


Engineer,  Application, 
Sr.  wanted  by  Co. 
engaged  in  dvipmt  & 
mktg  of  debit  card.  Must 
have  BS  in  CS/EE  &/or 
related  tech  field  w/5yr 
exp.  (or  MS  w/2yr  exp). 
Reply  to  HR,  Attn:  T.  R, 
Med-I-Bank,  Inc.,  1601 
Trapelo  Rd.,  Waltham, 
MA  02451. 


Prog/Analysts  to  analyze, 
design,  test  datawarehousing, 
software  appins  using  Cognos, 
COBOL.  DB2.  HTML,  Java. 
JScript  on  UNIX,  Windows  OS; 
gather,  document  reqs  from  user 
community;  test,  troubleshoot 
project  appin  code  accor.  to  sys¬ 
tem  objectives.  Require:  BS  or 
foreign  equiv.  in  CS/Engg.(any 
branch)  &  2  yrs  exp  In  IT. 
Competitive  salary.  F/T.  Travel 
involved.  Resume  to  HR, 
Smartsoft  International,  Inc., 
4898,  South  Old  Peachtree  Rd, 
Norcross,  GA  30071 


Seeking  qualified  applicants  for  the 
following  positions  in  Memphis/ 
Collierville.  TN;  Senior  Progra¬ 
mmer  Analyst.  Foimulate/defir>e 
functional  requirements  and  docu¬ 
mentation  based  on  accepted  user 
criteria.  Requirements:  Bach¬ 
elor's  degree*  or  equivalent  In 
computer  science.  MIS.  math, 
engineering  or  related  field  plus  5 
years  of  experience  in  systems/ 
applications  development.  Exper¬ 
ience  with  J2EE  development 
using  UML  modeling;  UNIX 
Scripting;  and  SQL  Scripting  also 
required.  'Master's  degree  in 
appropriate  field  will  offset  2  years 
of  general  experience.  Submit 
resumes  to  Sibi  George,  FedEx 
Corporate  Services.  1900  Summit 
Tower  Blvd.,  Suite  1400,  Orlando. 
FL  32810.  EOEM/F/D/V. 


We  Do  A 
Better  Tob 
At 

Helping  You 
Get  One. 


Search  for  jobs  and  post 
your  resume  on 
itcareers.com,  now  powered 
by  CareerJournal.com! 

Check  us  out  at: 
www.itcareers.com 
or  call:  (800)  762-2977 
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BackSpin 


Mark  Gibbs 


For  the  people  and  by  the  people 

I 


just  watched  the  first  and  appar¬ 
ently  last  gubernatorial  debate 
that  will  feature  Ahhhrnold  in  the 
three-ring  circus  that  is  the  Cali¬ 
fornia  recall  election.  It  was  terrific.  1 
couldn’t  make  up  stuff  like  that. 

If  you  don’t  know  the  actors  — 
umm,  candidates  —  involved  in  this 
event  there  was  Lieutenant  Governor  of  California, 
Cruz  Bustamante  (Democrat),  who  came  across  as 
irritatingly  smug  and  not  a  little  smarmy;  Arianna 
Huffington  (Independent),  who  is  very  smart  but 
too  shrill  and  too  much  of  a  political  animal  for  her 
motives  to  be  trustworthy;  Peter  Camejo  (Green 
Party),  who  is  really  smart  but  far  too  socialist  for 
my  tastes;  Republican  state  Sen. Tom  McClintock, 
who  is  mostly  well-informed  and  seems  credible; 
and  last  but  not  least,  Arnold  “The  Govenator” 
Schwarzenegger  (Republican). 

Arnold  actually  came  across  much  better  than  I 
had  expected,  although  he  skirted  a  few  issues.  On 
the  other  hand  it  wasn’t  as  if  any  of  the  other  can¬ 
didates  seemed  to  be  committed  to  staying  on 
topic  either. 

Arnold  also  took  Huffington’s  repeated  jibes  in 
stride  and  displayed  a  facility  with  off-the-cuff 
sound  bites  that  was  impressive. 

What  has  this  to  do  with  networking?  Well,  as  I  sat 


there  being  entertained,  glass  of  wine  in  hand,  it 
occurred  to  me  that  the  Internet  might  render  politi¬ 
cians  a  dying  breed  ...  at  least  as  far  as  we  think  of 
them  carrying  out  their  duties  today 

You  might  think  politicians  already  are  disposable 
(indeed,  many  appear  to  be  purchasable  as  well), 
but  the  truth  is  that  they  are  the  current  mecha¬ 
nism  of  the  system  —  we  elect  our  representatives 
on  the  basis  that  they  conform  to  some  extent  to 
our  values  and  then  we  turn  them  loose  to  make 
decisions  on  our  behalf.  And  when  they  don’t,  we 
have  a  recall. 

When  we  were  a  young  country  and  communi¬ 
cations  were  slow,  this  hierarchical  management 
system  made  sense  —  you  couldn’t  get  a  true  con¬ 
sensus  because  the  idea  of  holding  a  plebiscite 
back  in  say,  the  1800s,  would  have  been  totally 
impractical.  As  a  digression  let  me  note  that,  as  an 
example  of  how  slow  communications  were  for 
even  world-shattering  news,  I  have  read  it  took 
three  weeks  for  the  story  of  Lincoln’s  assassination 
to  reach  England. 

But  now  we  are  a  slightly  older  country  with  great 
communications  and  we  are  approaching  the  era  of 
Internet  voting.  Sure,  many  pundits  have  pointed  out 
that  there  are  significant  security  problems  in  run¬ 
ning  elections  over  the  ’Net,  but  they  can  and  will 
be  solved.  And  I  can’t  believe  that  Internet  voting 


systems  could  be  any  less  dubious  than, say, 
Florida’s  was  in  the  last  presidential  election. 

Eventually  the  proposition  of  any  citizen  being 
able  to  vote  online  from  anywhere  will  become  a 
reality,  and  then  the  chad  will  hit  the  fan. Voters 
turning  rabidly  activist  as  happened  with  the 
California  recall  will  become  commonplace,  and 
eventually  the  demand  for  more  issues  to  be  voted 
on  by  the  people  and  not  through  the  dubious 
proxy  of  their  elected  representative  will  become 
overwhelming. 

No  politician  will  be  able  to  dam  the  flood  of 
voter  demand  for  the  people  to  be  consulted  and 
for  them  to  make  decisions  through  voting.This  will 
apply  to  all  sorts  of  social  and  political  issues  rang¬ 
ing  from  the  most  strategic  to  the  most  tactical. 

And  that  will  throw  politicians  into  a  completely 
different  role  as  information  brokers  rather  than 
balancers  of  often  conflicting  political  agendas. 
The  pressure  to  be  honest  and  objective  would 
be  immense  because  they  would  have  to  adopt 
the  role  of  mediator  and  enabler  rather  than  deci¬ 
sion  maker. 

Does  that  all  sound  too  optimistic  and  utopian? 
Perhaps,  but  government  for  the  people  and  by  the 
people  would  take  on  a  whole  new  meaning. 

Your  vote  to  backspin  at  gibbs.com. 
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By  Paul  McNamara 

Put ...  the .. .  phone . . .  down 

There’s  no  need  to  call  Judge  Edward 
Nottingham  in  Denver  to  vent  your  out¬ 
rage  over  his  ruling  last  week  granting  telemarketers  a  reprieve  from  the  federal 
government’s  wildly  popular  do-not-call  list.  (Although,  if  someone  has  his 
honor’s  home  phone  number,  it  might  be  fun  to  yank  his  chain,  oh,  say  during 
dinnertime.) 

There’s  no  need  to  call  yourWashington  lawmakers,  either,  even  though  phones 
in  congressional  offices  were  no  doubt  ringing  non-stop  during  all  of  last  week’s 
legislative  and  legal  maneuvering.  Congress  is  speaking  with  one  voice  on  this 
issue,  and  for  once  it’s  the  same  as  yours. 

And  complaining  to  the  Direct  Marketing  Association,  which  has  helped  carry 
the  telemarketing  industry’s  leaky  bucket  into  sympathetic  courtrooms,  isn’t 
worth  the  wear  and  tear  on  your  dialing  digit. 

The  reason  you  don’t  need  to  run  up  your  long-distance  bill  —  or  your  blood 
pressure  —  is  that  this,  too,  shall  pass,  although  probably  not  before  scotching 
Wednesday’s  scheduled  implementation  of  the  do-not-call  regulations.  We’re  talk¬ 
ing  about  a  mere  hiccup  here,  a  minor  detour. 

Why  the  confidence? 

Well,  it  isn’t  every  day  that  the  Senate  votes  95-0  and  the  House  weighs  in  at 
412-8  in  support  of  legislation  that  didn’t  even  exist  when  lawmakers  awoke  that 
morning.  But  that’s  what  happened  last  Wednesday  after  an  earlier  court  decision 
held  that  the  FederalTrade  Commission  (FTC)  lacked  proper  congressional 
authority  to  initiate  the  do-not-call  list. 

“Here’s  your  stinkin’  authority,"  lawmakers  fairly  sneered. 

As  for  Judge  Nottingham,  he  simply  and  obviously  erred.  In  essence,  he  argued 
thal’^'ho  FTC  is  proscribed  by  the  First  Amendment  from  curtailing  the  activities 
of  commercial  telemarketers,  while  at  the  same  time  leaving  political  and  reli¬ 


gious  telemarketers  free  to  dial  at  will. 

But  there’s  nothing  novel  about  government  drawing  such  distinctions,  as  politi¬ 
cal  and  religious  speech  have  historically  —  and  with  good  reason  —  enjoyed  a 
greater  degree  of  First  Amendment  protection  than  does  commercial  speech. 

That’s  why  you  can  stick  a  sign  in  your  front  lawn  touting  your  favorite  political 
candidate  but  can’t  erect  a  commercial  billboard  there.  It’s  why  religious  pamph¬ 
leteers  have  an  easier  time  in  airports  and  malls  than  do  hawkers  for  merchants. 

In  short,  the  law  is  chock  full  of  cases  —  long-established  and  widely  accepted 
—  in  which  the  government  treats  commercial  speech  differently  than  it  does 
political  and  religious  speech. 

Nottingham’s  decision  hasn’t  got  a  prayer  of  surviving  appeal. 

What  e-mail  ban? 

Speaking  of  this,  too,  passing;  Much  ado  was  made  last  week  about  the  pur¬ 
ported  banishment  of  e-mail  from  the  premises  of  British  company  Phones  4U. 

Turns  out  there  was  much  less  to  the  story  than  you  might  have  gleaned  from 
press  snippets.The  headlines  and  broadcast  versions  made  it  seem  as  though  the 
company’s  CEO  had  simply  up  and  scrapped  e-mail  altogether. . . .  Not  so. 

Not  only  did  the  so-called  “ban"  cover  only  internal  employee-to-employee 
e-mail,  it  failed  to  account  for  the  fact  that  the  company  in  question  conducts  a 
slew  of  internal  processes  via  e-mail  that  weren’t  likely  to  be  conducted  any  other 
way  any  time  soon. 

None  of  which  stopped  e-mail  vendors  from  jumping  on  the  story.  One  offered 
me  a  briefing  “to  discuss  how  companies  can  avoid  having  to  take  such  drastic 
measures  like  getting  rid  of  e-mail  completely." 

Buzz  will  save  you  the  time  of  such  a  consultation.  If  you  are  contemplating  the 
drastic  step  of  getting  rid  of  e-mail  completely,  here’s  all  you  need  know: 

It’s  long  past  time  to  find  a  new  career. 

Ours  still  works.  The  address  is  buzz@nww.com. 


www.xo.com 


Think  all  local  telephone 
plans  for  business  are  the  same? 
Take  a  closer  look.  Think  one 
local  phone  carrier,  nationwider 
Think  one  bill.  Think  National 
Local  Service,  coming  from  XOJ” 
Simple,  intelligently  priced 
local  phone  service  for  all  your 
offices  across  the  country. 

No  more  countless  providers. 
No  more  countless  contracts. 

It's  new.  It's  remarkably  easy. 
And  it's  the  kind  of  thinking 
you  can  expect  from  XOT” 


CALL  TO  GET  CONNECTED  1-866-SIMPLY  XO  (746-7599) 
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The  right  management  can  put  you  in  control  of  your  infrastructure, 
not  the  other  way  around. 

Unicenter®  Infrastructure  Management  Software 

So  long,  mayhem.  Managing  on-demand  computing  is  here.  Unicenter  infrastructure  management  software  lets  you  take  control 
of  your  infrastructure  so  you  can  be  more  responsive  to  business.  With  automation  and  self-healing  capabilities  Unicenter  can 
help  control  costs  and  empower  you  to  do  more  with  less.  Unicenter  also  lets  your  infrastructure  react  to  changes  in  real  time, 
so  your  IT  and  business  priorities  are  always  in  sync.  Finally,  it  is  based  upon  a  service-oriented  architecture  that  simplifies 
your  IT  environment,  so  your  infrastructure  is  easier  to  manage.  To  learn  how  to  get  more  value  out  of  your  infrastructure, 
or  to  get  a  white  paper,  go  to  ca.com/infrastructure. 
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